[Secure-testing-commits] r12725 - data/CVE

Steffen Joeris white at alioth.debian.org
Tue Sep 1 09:25:12 UTC 2009 

Author: white
Date: 2009-09-01 09:25:12 +0000 (Tue, 01 Sep 2009)
New Revision: 12725

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-31 23:27:14 UTC (rev 12724)
+++ data/CVE/list	2009-09-01 09:25:12 UTC (rev 12725)
@@ -1,73 +1,73 @@
 CVE-2009-3009
 	RESERVED
 CVE-2009-3008 (K-Meleon 1.5.3 allows context-dependent attackers to spoof the address ...)
-	TODO: check
+	NOT-FOR-US: K-Meleon	
 CVE-2009-3007 (Mozilla Firefox 3.5.1 and SeaMonkey 1.1.17, and Flock 2.5.1, allow ...)
 	TODO: check
 CVE-2009-3006 (Maxthon Browser 2.5.3.80 UNICODE allows remote attackers to spoof the ...)
-	TODO: check
+	NOT-FOR-US: Maxthon Browser
 CVE-2009-3005 (Lunascape 5.1.3 and 5.1.4 allows remote attackers to spoof the address ...)
-	TODO: check
+	NOT-FOR-US: Lunascape
 CVE-2009-3004 (Avant Browser 11.7 Builds 35 and 36 allows remote attackers to spoof ...)
 	TODO: check
 CVE-2009-3003 (Microsoft Internet Explorer 6 through 8 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2009-3002 (The Linux kernel before 2.6.31-rc7 does not initialize certain data ...)
 	TODO: check
 CVE-2009-3001 (The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel ...)
 	TODO: check
 CVE-2009-3000 (The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2008-7131 (Unspecified vulnerability in DB2 Monitoring Console 2.2.4 and earlier ...)
-	TODO: check
+	NOT-FOR-US: DB2 Monitoring Console
 CVE-2008-7130 (Unspecified vulnerability in DB2 Monitoring Console 2.2.4 and earlier ...)
-	TODO: check
+	NOT-FOR-US: DB2 Monitoring Console
 CVE-2008-7129 (XySSL before 0.9 allows remote attackers to cause a denial of service ...)
 	TODO: check
 CVE-2008-7128 (The ssl_parse_client_key_exchange function in XySSL before 0.9 does ...)
 	TODO: check
 CVE-2008-7127 (osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and ...)
-	TODO: check
+	NOT-FOR-US: Borland VisiBroker Smart Agent
 CVE-2008-7126 (Integer overflow in osagent.exe in Borland VisiBroker Smart Agent ...)
-	TODO: check
+	NOT-FOR-US: Borland VisiBroker Smart Agent
 CVE-2008-7125 (pphoto in Ariadne before 2.6 allows remote authenticated users with ...)
-	TODO: check
+	NOT-FOR-US: Ariadne
 CVE-2008-7124 (zKup CMS 2.0 through 2.3 does not require administrative ...)
-	TODO: check
+	NOT-FOR-US: zKup CMS
 CVE-2008-7123 (Static code injection vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: zKup CMS
 CVE-2008-7122 (Multiple insecure method vulnerabilities in an ActiveX control in ...)
-	TODO: check
+	NOT-FOR-US: ActiveX
 CVE-2008-7121 (Cross-site scripting (XSS) vulnerability in Mr. CGI Guy Hot Links ...)
-	TODO: check
+	NOT-FOR-US: Mr. CGI Guy Hot Links SQL-PHP
 CVE-2008-7120 (SQL injection vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and ...)
-	TODO: check
+	NOT-FOR-US: Mr. CGI Guy Hot Links SQL-PHP
 CVE-2008-7119 (SQL injection vulnerability in item.php in WeBid auction script 0.5.4 ...)
-	TODO: check
+	NOT-FOR-US: WeBid auction script
 CVE-2008-7118 (WeBid auction script 0.5.4 stores sensitive information under the web ...)
-	TODO: check
+	NOT-FOR-US: WeBid auction script
 CVE-2008-7117 (eledicss.php in WeBid auction script 0.5.4 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: WeBid auction script
 CVE-2008-7116 (SQL injection vulnerability in the admin panel (admin/) in WeBid ...)
-	TODO: check
+	NOT-FOR-US: WeBid auction script
 CVE-2008-7115 (The web interface to the Belkin Wireless G router and ADSL2 modem ...)
-	TODO: check
+	NOT-FOR-US: Belkin Wireless G
 CVE-2008-7114 (SQL injection vulnerability in members_search.php in iFusion Services ...)
-	TODO: check
+	NOT-FOR-US: iFusion Services
 CVE-2008-7113 (The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 ...)
-	TODO: check
+	NOT-FOR-US: Kyocera Mita
 CVE-2008-7112 (The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 ...)
-	TODO: check
+	NOT-FOR-US: Kyocera Mita
 CVE-2008-7111 (The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 ...)
-	TODO: check
+	NOT-FOR-US: Kyocera Mita
 CVE-2008-7110 (Directory traversal vulnerability in the Scanner File Utility (aka ...)
-	TODO: check
+	NOT-FOR-US: Kyocera Mita
 CVE-2008-7109 (The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 ...)
-	TODO: check
+	NOT-FOR-US: Kyocera Mita
 CVE-2008-7108 (Multiple cross-site scripting (XSS) vulnerabilities in Carmosa phpCart ...)
-	TODO: check
+	NOT-FOR-US: Carmosa phpCart
 CVE-2008-7107 (easdrv.sys in ESET Smart Security 3.0.667.0 allows local users to ...)
-	TODO: check
+	NOT-FOR-US: ESET Smart Security
 CVE-2009-XXXX [multiple security issues in silc-toolkit]
 	- silc-toolkit <unfixed> (medium)
 	[etch] - silc-toolkit <not-affected> (Vulnerable code not present)

More information about the Secure-testing-commits mailing list