[Secure-testing-commits] r19829 - data/CVE
Yves-Alexis Perez
corsac at alioth.debian.org
Mon Jul 30 19:27:04 UTC 2012
Author: corsac
Date: 2012-07-30 19:27:04 +0000 (Mon, 30 Jul 2012)
New Revision: 19829
Modified:
data/CVE/list
Log:
fix a bunch of TODO: check entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-07-30 19:14:35 UTC (rev 19828)
+++ data/CVE/list 2012-07-30 19:27:04 UTC (rev 19829)
@@ -1,5 +1,5 @@
CVE-2012-4068 (Heap-based buffer overflow in the SoapServer service in Citrix ...)
- TODO: check
+ NOT-FOR-US: Citrix
CVE-2012-4067
RESERVED
CVE-2012-4066
@@ -13,43 +13,43 @@
CVE-2012-4062
RESERVED
CVE-2012-4061 (Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow ...)
- TODO: check
+ NOT-FOR-US: ASP-DEv XM Diary
CVE-2012-4060 (Multiple SQL injection vulnerabilities in ASP-DEv XM Forums RC3 allow ...)
- TODO: check
+ NOT-FOR-US: ASP-DEv XM Diary
CVE-2012-4059 (Cross-site request forgery (CSRF) vulnerability in home/secretqtn.php ...)
- TODO: check
+ NOT-FOR-US: Socketmail not in Debian
CVE-2012-4058 (Cross-site scripting (XSS) vulnerability in SocketMail Pro 2.2.9 ...)
- TODO: check
+ NOT-FOR-US: Socketmail not in Debian
CVE-2012-4057 (Buffer overflow in the Player in Remote-Anything 5.60.15 allows remote ...)
- TODO: check
+ NOT-FOR-US: Remote-Anything not in Debian
CVE-2012-4056 (SQL injection vulnerability in index2.php in Uiga Personal Portal ...)
- TODO: check
+ NOT-FOR-US: Uiga personal portal
CVE-2012-4055 (SQL injection vulnerability in index2.php in Uiga Fan Club allows ...)
- TODO: check
+ NOT-FOR-US: Uiga Fan Club
CVE-2012-4054 (Buffer overflow in the readfile function in CPE17 Autorun Killer 1.7.1 ...)
- TODO: check
+ NOT-FOR-US: CPE17 Autorun Killer not in Debian
CVE-2012-4053 (Cross-site request forgery (CSRF) vulnerability in eZOE flash player ...)
- TODO: check
+ NOT-FOR-US: eZOE flash player not in Debian
CVE-2012-4052
RESERVED
CVE-2012-4051
RESERVED
CVE-2007-6754 (The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for ...)
- TODO: check
+ NOT-FOR-US: NetBSD/FreeBSD libc
CVE-2006-7252 (Integer overflow in the calloc function in libc/stdlib/malloc.c in ...)
- TODO: check
+ NOT-FOR-US: NetBSD/FreeBSD libc
CVE-2005-4895 (Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools ...)
- TODO: check
+ - google-perftools 0.7-1
CVE-2012-4047
RESERVED
CVE-2012-4046
RESERVED
CVE-2012-4045 (Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 ...)
- TODO: check
+ NOT-FOR-US: Winamp
CVE-2012-4044
RESERVED
CVE-2012-4043 (Cross-site scripting (XSS) vulnerability in global-protect/login.esp ...)
- TODO: check
+ NOT-FOR-US: Palo Alto Networks software, not in Debian
CVE-2012-4042
RESERVED
CVE-2012-4041
@@ -81,11 +81,11 @@
NOTE: http://www.openwall.com/lists/oss-security/2012/07/24/1
NOTE: http://www.openwall.com/lists/oss-security/2012/07/24/2
CVE-2012-4033 (Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin ...)
- TODO: check
+ NOT-FOR-US: Zingiri not in Debian
CVE-2012-4032 (Open redirect vulnerability in the login page in WebsitePanel before ...)
- TODO: check
+ NOT-FOR-US: WebsitePanel not in Debian
CVE-2012-4031 (Multiple directory traversal vulnerabilities in src/acloglogin.php in ...)
- TODO: check
+ NOT-FOR-US: Wangkongbao not in Debian
CVE-2012-4030
RESERVED
TODO: check
More information about the Secure-testing-commits
mailing list