[Secure-testing-commits] r18140 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Jan 13 16:46:48 UTC 2012 

Author: jmm
Date: 2012-01-13 16:46:47 +0000 (Fri, 13 Jan 2012)
New Revision: 18140

Modified:
   data/CVE/list
Log:
wireshark fixed
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-01-13 05:22:21 UTC (rev 18139)
+++ data/CVE/list	2012-01-13 16:46:47 UTC (rev 18140)
@@ -3,9 +3,9 @@
 	[squeeze] - as31 <no-dsa> (Minor issue)
 	[lenny] - as31 <no-dsa> (Minor issue)
 CVE-2011-5059 (Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Final Draft
 CVE-2011-5058 (The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 ...)
-	TODO: check
+	NOT-FOR-US: 3S CoDeSys
 CVE-2012-0479
 	RESERVED
 CVE-2012-0478
@@ -847,7 +847,7 @@
 	NOT-FOR-US: GoAhead WebServer
 CVE-2009-5110 (dhttpd allows remote attackers to cause a denial of service (daemon ...)
 	- dhttpd <unfixed> (low; bug #533665)
-	[etch] - dhttpd <no-dsa> (Minor issue)
+	[squeeze] - dhttpd <no-dsa> (Minor issue)
 	[lenny] - dhttpd <no-dsa> (Minor issue)
 CVE-2009-5109 (Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows ...)
 	NOT-FOR-US: Mini-Stream Ripper
@@ -1464,7 +1464,7 @@
 CVE-2011-4786
 	RESERVED
 CVE-2011-4785 (Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on ...)
-	TODO: check
+	NOT-FOR-US: HP-ChaiSOE/1.0 web server
 CVE-2011-4784 (The NVIDIA Stereoscopic 3D driver before 7.17.12.7565 does not ...)
 	NOT-FOR-US: NVIDIA Windows driver
 CVE-2011-4783 (The IDAPython plugin before 1.5.2.3 in IDA Pro allows user-assisted ...)
@@ -1809,14 +1809,14 @@
 	- linux-2.6 3.1.5-1
 CVE-2012-0043 [wireshark RLC buffer overflow] 
 	RESERVED
-	- wireshark <unfixed>
+	- wireshark 1.6.5-1
 CVE-2012-0042 [wireshark unspecified NULL derefs]
 	RESERVED
-	- wireshark <unfixed> (unimportant)
+	- wireshark 1.6.5-1 (unimportant)
 	NOTE: Not suitable for code injection
 CVE-2012-0041 [wireshark file parser issues]
 	RESERVED
-	- wireshark <unfixed> (unimportant)
+	- wireshark 1.6.5-1 (unimportant)
 	NOTE: Only triggerable with social engineering
 CVE-2012-0040 [simpleSAMLphp cross site scripting]
 	RESERVED
@@ -2585,13 +2585,13 @@
 CVE-2012-0005 (The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 ...)
 	TODO: check
 CVE-2012-0004 (Unspecified vulnerability in DirectShow in DirectX in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: DirectX
 CVE-2012-0003 (Unspecified vulnerability in winmm.dll in Windows Multimedia Library ...)
 	TODO: check
 CVE-2012-0002
 	RESERVED
 CVE-2012-0001 (The kernel in Microsoft Windows XP SP2, Windows Server 2003 SP2, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2011-4436 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
 	NOT-FOR-US: Dell appliance
 CVE-2011-4435 (The web-server component in the Consolidation and Analysis Engine ...)

More information about the Secure-testing-commits mailing list