[Secure-testing-commits] r14899 - data/CVE
Kees Cook
kees at alioth.debian.org
Wed Jun 23 23:58:32 UTC 2010
Author: kees
Date: 2010-06-23 23:58:32 +0000 (Wed, 23 Jun 2010)
New Revision: 14899
Modified:
data/CVE/list
Log:
NFUs: 14
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-06-23 21:14:28 UTC (rev 14898)
+++ data/CVE/list 2010-06-23 23:58:32 UTC (rev 14899)
@@ -1976,7 +1976,7 @@
CVE-2010-1623
RESERVED
CVE-2010-1622 (SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before ...)
- TODO: check
+ NOT-FOR-US: SpringSource Spring Framework
CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL ...)
- mysql-5.1 5.1.46-1
- mysql-dfsg-5.0 <not-affected> (Vulnerable code not present)
@@ -2764,25 +2764,25 @@
CVE-2010-1383
RESERVED
CVE-2010-1382 (Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1381 (The default configuration of SMB File Server in Apple Mac OS X 10.5.8, ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1380 (Integer overflow in the cgtexttops CUPS filter in Printing in Apple ...)
- TODO: check
+ NOT-FOR-US: Apple-specific CUPS filter "cgtexttops"
CVE-2010-1379 (Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1378
RESERVED
CVE-2010-1377 (Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1376 (Multiple format string vulnerabilities in Network Authorization in ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1375 (NetAuthSysAgent in Network Authorization in Apple Mac OS X 10.5.8 does ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1374 (Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, ...)
- TODO: check
+ NOT-FOR-US: iChat
CVE-2010-1373 (Cross-site scripting (XSS) vulnerability in Help Viewer in Apple Mac ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-1423 (Argument injection vulnerability in the URI handler in (a) Java NPAPI ...)
- sun-java6 6.20-1 (high)
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
@@ -5257,9 +5257,9 @@
{DSA-2004-1}
- samba 2:3.4.5~dfsg-2 (bug #568942; medium)
CVE-2010-0546 (Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-0545 (The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2010-0544 (Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari ...)
- webkit <undetermined>
NOTE: https://bugs.webkit.org/show_bug.cgi?id=37662
@@ -5284,7 +5284,6 @@
CVE-2010-0535 (Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is ...)
- dovecot <undetermined>
NOTE: no reference or information found for this bug, contacted apple security
- TODO: check
CVE-2010-0534 (Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the ...)
NOT-FOR-US: Apple Wiki Server
CVE-2010-0533 (Directory traversal vulnerability in AFP Server in Apple Mac OS X ...)
@@ -6052,7 +6051,7 @@
NOTE: http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=593616
CVE-2010-0284 (Directory traversal vulnerability in the getEntry method in the ...)
- TODO: check
+ NOT-FOR-US: Novell Access Manager
CVE-2010-0283 (The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 ...)
- krb5 1.8+dfsg~alpha1-7
[lenny] - krb5 <not-affected> (Only affects krb5 >= 1.7)
@@ -25827,7 +25826,7 @@
CVE-2008-4390 (The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 ...)
NOT-FOR-US: Cisco Linksys WVC54GC
CVE-2008-4389 (Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x ...)
- TODO: check
+ NOT-FOR-US: Symantec AppStream
CVE-2008-4388 (The LaunchObj ActiveX control before 5.2.2.865 in launcher.dll in ...)
NOT-FOR-US: LaunchObj ActiveX
CVE-2008-4387 (Unspecified vulnerability in the Simba MDrmSap ActiveX control in ...)
More information about the Secure-testing-commits
mailing list