[Secure-testing-commits] r13312 - in data: . CVE

Wed Nov 18 12:53:20 UTC 2009

Author: derevko-guest
Date: 2009-11-18 12:53:20 +0000 (Wed, 18 Nov 2009)
New Revision: 13312

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
NFUs
CVE-2007-2383 and CVE-2008-7720 fixed in hobix 0.5~svn20070319-4


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-11-18 12:50:03 UTC (rev 13311)
+++ data/CVE/list	2009-11-18 12:53:20 UTC (rev 13312)
@@ -19,21 +19,21 @@
 CVE-2009-3951
 	RESERVED
 CVE-2009-3950 (Multiple cross-site scripting (XSS) vulnerabilities in Bractus ...)
-	TODO: check
+	NOT-FOR-US: Bractus SunTrack
 CVE-2009-3949 (cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not ...)
-	TODO: check
+	NOT-FOR-US: VivaPrograms Infinity
 CVE-2009-3948 (JetAudio 7.5.3 COWON Media Center allows remote attackers to cause a ...)
-	TODO: check
+	NOT-FOR-US: JetAudio
 CVE-2009-3947 (Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows ...)
-	TODO: check
+	NOT-FOR-US: Tandberg MXP F7.0
 CVE-2009-3946 (Joomla! before 1.5.15 allows remote attackers to read an extension's ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2009-3945 (Unspecified vulnerability in the Front-End Editor in the com_content ...)
-	TODO: check
+	NOT-FOR-US: component in Joomla!
 CVE-2009-3944 (Research In Motion (RIM) BlackBerry Browser on the BlackBerry 8800 ...)
-	TODO: check
+	NOT-FOR-US: BlackBerry Browser on the BlackBerry 8800
 CVE-2009-3943 (Microsoft Internet Explorer 6 through 6.0.2900.2180 and 7 through ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2009-3942 (Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not ...)
 	TODO: check
 CVE-2009-3941 (Martin Lambers mpop before 1.0.19, when OpenSSL is used, does not ...)
@@ -50,11 +50,11 @@
 	TODO: check
 	NOTE: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a9e38c3e01ad242fe2a625354cf065c34b01e3aa
 CVE-2009-3937 (Memory leak in Solaris TCP sockets in Sun OpenSolaris snv_106 through ...)
-	TODO: check
+	NOT-FOR-US: Sun OpenSolaris
 CVE-2009-3936 (Unspecified vulnerability in Citrix Online Plug-in for Windows 11.0.x ...)
-	TODO: check
+	NOT-FOR-US: Citrix Online Plug-in
 CVE-2009-3935 (Multiple unspecified vulnerabilities in the Advanced Management Module ...)
-	TODO: check
+	NOT-FOR-US: IBM BladeCenter
 CVE-2009-3934 (The WebFrameLoaderClient::dispatchDidChangeLocationWithinPage function ...)
 	TODO: check
 CVE-2009-3933 (WebKit before r50173, as used in Google Chrome before 3.0.195.32, ...)
@@ -2054,7 +2054,7 @@
 	[etch] - wordpress <not-affected> (prototype.js not present)
 	- exaile <unfixed> (low; bug #555244)
 	[lenny] - exaile <no-dsa> (minor issue)
-	- hobix <unfixed> (low; bug #555246)
+	- hobix 0.5~svn20070319-4 (low; bug #555246)
 	[lenny] - hobix <no-dsa> (minor issue)
 	- pixelpost 1.7.1-6 (low; bug #555248)
 	[lenny] - pixelpost <no-dsa> (minor issue)
@@ -38759,7 +38759,7 @@
 	[lenny] - qwik <no-dsa> (minor issue)
 	- wordpress <not-affected> (fixed since initial inclusion)
 	- exaile <not-affected> (fixed since initial inclusion)
-	- hobix <unfixed> (low; bug #555246)
+	- hobix 0.5~svn20070319-4 (low; bug #555246)
 	[lenny] - hobix <no-dsa> (minor issue)
 	- pixelpost 1.7.1-6 (low; bug #555248)
 	[lenny] - pixelpost <no-dsa> (minor issue)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2009-11-18 12:50:03 UTC (rev 13311)
+++ data/embedded-code-copies	2009-11-18 12:53:20 UTC (rev 13312)
@@ -666,7 +666,7 @@
 	TODO: search through all of the other zope packages
 	- ampache 3.4.1-2 (embed)
 	- exaile <unfixed> (embed; bug #555245)
-	- hobix <unfixed> (embed; bug #555247)
+	- hobix 0.5~svn20070319-4 (embed; bug #555247)
 	- zabbix 1.6.6-4 (embed; bug #555250)
 	- chora2 <unfixed> (embed; bug #555253)
 	- gollem <unfixed> (embed; bug # 555254)


