[Secure-testing-commits] r15208 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Aug 25 14:58:51 UTC 2010 

Author: jmm-guest
Date: 2010-08-25 14:58:43 +0000 (Wed, 25 Aug 2010)
New Revision: 15208

Modified:
   data/CVE/list
Log:
new Okular issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-08-25 09:22:11 UTC (rev 15207)
+++ data/CVE/list	2010-08-25 14:58:43 UTC (rev 15208)
@@ -982,17 +982,17 @@
 CVE-2010-2711
 	RESERVED
 CVE-2010-2710 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView 
 CVE-2010-2709 (Stack-based buffer overflow in webappmon.exe in HP OpenView Network ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView 
 CVE-2010-2708 (Unspecified vulnerability on the HP ProCurve 2610 switch before ...)
-	TODO: check
+	NOT-FOR-US: HP ProCurve
 CVE-2010-2707 (Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches ...)
-	TODO: check
+	NOT-FOR-US: HP ProCurve
 CVE-2010-2706 (Unspecified vulnerability in the In-band Agent on the HP ProCurve 2610 ...)
-	TODO: check
+	NOT-FOR-US: HP ProCurve
 CVE-2010-2705 (Unspecified vulnerability on the HP ProCurve 1800-24G switch with ...)
-	TODO: check
+	NOT-FOR-US: HP ProCurve
 CVE-2010-2704 (Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and ...)
 	NOT-FOR-US: HP OpenView 
 CVE-2010-2703 (Stack-based buffer overflow in the execvp_nc function in the ov.dll ...)
@@ -1183,7 +1183,7 @@
 CVE-2010-2635
 	RESERVED
 CVE-2010-2634 (RSA enVision before 3.7 SP1 allows remote authenticated users to cause ...)
-	TODO: check
+	NOT-FOR-US: RSA enVision
 CVE-2010-2633 (Unspecified vulnerability in EMC Disk Library (EDL) before 3.2.7, ...)
 	NOT-FOR-US: EMC
 CVE-2010-2632
@@ -1302,11 +1302,16 @@
 CVE-2010-2578
 	RESERVED
 CVE-2010-2577 (Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allow ...)
-	TODO: check
+	NOT-FOR-US: Pligg
 CVE-2010-2576 (Opera before 10.61 does not properly suppress clicks on download ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-2575
 	RESERVED
+	- okular <removed> (low)
+	[lenny] - okular <no-dsa> (Will be fixed in a stable point update)
+	- kdegraphics <unfixed>
+	[lenny] - kdegraphics <not-affected> (Lenny's kdegraphics doesn't yet contain Okular)
+	NOTE: http://www.kde.org/info/security/advisory-20100825-1.txt
 CVE-2010-2574 (Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in ...)
 	TODO: check
 CVE-2010-2598 (LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms, as ...)
@@ -1332,39 +1337,39 @@
 CVE-2010-2567
 	RESERVED
 CVE-2010-2566 (The Secure Channel (aka SChannel) security package in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2565
 	RESERVED
 CVE-2010-2564 (Buffer overflow in Microsoft Windows Movie Maker (WMM) 2.1, 2.6, and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2563
 	RESERVED
 CVE-2010-2562 (Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2561 (Microsoft XML Core Services (aka MSXML) 3.0 does not properly handle ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2560 (Microsoft Internet Explorer 6, 7, and 8 does not properly handle ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2559 (Microsoft Internet Explorer 8 does not properly handle objects in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2558 (Race condition in Microsoft Internet Explorer 6, 7, and 8 allows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2557 (Microsoft Internet Explorer 6 does not properly handle objects in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2556 (Microsoft Internet Explorer 6, 7, and 8 does not properly handle ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2555 (The Tracing Feature for Services in Microsoft Windows Vista SP1 and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2554 (The Tracing Feature for Services in Microsoft Windows Vista SP1 and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2553 (The Cinepak codec in Microsoft Windows XP SP2 and SP3, Windows Vista ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2552 (Stack consumption vulnerability in the SMB Server in Microsoft Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2551 (The SMB Server in Microsoft Windows Vista SP1 and SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2550 (The SMB Server in Microsoft Windows XP SP2 and SP3, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2010-2549 (Use-after-free vulnerability in Microsoft Windows Vista and Server ...)
 	NOT-FOR-US: Microsoft
 CVE-2010-2548

More information about the Secure-testing-commits mailing list