[Secure-testing-commits] r11461 - data/CVE
atomo64-guest at alioth.debian.org
atomo64-guest at alioth.debian.org
Mon Mar 23 03:34:52 UTC 2009
Author: atomo64-guest
Date: 2009-03-23 03:34:51 +0000 (Mon, 23 Mar 2009)
New Revision: 11461
Modified:
data/CVE/list
Log:
NFUs and ejabberd issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-03-23 02:52:55 UTC (rev 11460)
+++ data/CVE/list 2009-03-23 03:34:51 UTC (rev 11461)
@@ -1,9 +1,9 @@
CVE-2009-1040 (Buffer overflow in WinAsm Studio 5.1.5.0 allows user-assisted remote ...)
- TODO: check
+ NOT-FOR-US: WinAsm
CVE-2009-1039 (Buffer overflow in CDex 1.70b2 allows remote attackers to execute ...)
TODO: check
CVE-2009-1038 (Multiple SQL injection vulnerabilities in YAP Blog 1.1.1 allow remote ...)
- TODO: check
+ NOT-FOR-US: YAP Blog
CVE-2009-1037 (Unspecified vulnerability in the Send by e-mail module in the ...)
TODO: check
CVE-2009-1036 (Cross-site request forgery (CSRF) vulnerability in the Plus 1 module ...)
@@ -13,13 +13,13 @@
CVE-2009-1034 (SQL injection vulnerability in the Tasklist module 5.x-1.x before ...)
TODO: check
CVE-2009-1033 (SQL injection vulnerability in misc.php in DeluxeBB 1.3 and earlier ...)
- TODO: check
+ NOT-FOR-US: DeluxeBB
CVE-2009-1032 (SQL injection vulnerability in gallery_list.php in YABSoft Advanced ...)
- TODO: check
+ NOT-FOR-US: YABSoft Advanced Image Gallery
CVE-2009-1031 (Directory traversal vulnerability in the FTP server in Rhino Software ...)
- TODO: check
+ NOT-FOR-US: FTP Rhino Software Serv-U
CVE-2009-1030 (Cross-site scripting (XSS) vulnerability in the choose_primary_blog ...)
- TODO: check
+ - wordpress-mu <itp> (bug #399756)
CVE-2009-1029 (Stack-based buffer overflow in POP Peeper 3.4.0.0 and earlier allows ...)
TODO: check
CVE-2009-1028 (Stack-based buffer overflow in ediSys eZip Wizard 3.0 allows remote ...)
@@ -171,7 +171,7 @@
CVE-2009-0967 (The FTP server in Serv-U 7.4.0.1 allows remote authenticated users to ...)
TODO: check
CVE-2009-0966 (PHP remote file inclusion vulnerability in cross.php in YABSoft Mega ...)
- TODO: check
+ NOT-FOR-US: YABSoft Mega File Hosting
CVE-2009-0965 (SQL injection vulnerability in functions/browse.php in Ganesha Digital ...)
TODO: check
CVE-2009-0964 (UserView_list.php in PHPRunner 4.2, and possibly earlier, stores ...)
@@ -258,7 +258,8 @@
[lenny] - linux-2.6 <not-affected> (Vulnerability was introduced in 2.6.27-rc9)
- linux-2.6.24 <not-affected> (Vulnerability was introduced in 2.6.27-rc9)
CVE-2009-0934 (Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 ...)
- TODO: check
+ - ejabberd <unfixed> (bug #520852)
+ TODO: check version in old/stable
CVE-2009-0933 (Cross-site scripting (XSS) vulnerability in the administrative ...)
TODO: check
CVE-2009-0932 (Directory traversal vulnerability in framework/Image/Image.php in ...)
More information about the Secure-testing-commits
mailing list