[Secure-testing-commits] r49103 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Feb 21 17:50:07 UTC 2017
Author: jmm
Date: 2017-02-21 17:50:07 +0000 (Tue, 21 Feb 2017)
New Revision: 49103
Modified:
data/CVE/list
Log:
new php-horde-text-filter issue
some linux issues android-specific
convert open-xchange ITP entries to NFUs, the ITP is dead for over 12 years and the license of the frontend is non-free anyway
drop sqlalchemy entry, no CVE assigned and would amount to a doc change anyway
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-21 16:08:21 UTC (rev 49102)
+++ data/CVE/list 2017-02-21 17:50:07 UTC (rev 49103)
@@ -9584,7 +9584,7 @@
CVE-2017-2627 [openstack-tripleo-common: sudoers file is too permissive]
RESERVED
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1421917
- TODO: check
+ NOT-FOR-US: RHEL packaging flaw for openstack
CVE-2017-2626
RESERVED
CVE-2017-2625
@@ -18892,20 +18892,20 @@
CVE-2016-8408 (An information disclosure vulnerability in the NVIDIA video driver ...)
NOT-FOR-US: NVIDIA driver for Android
CVE-2016-8407 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8406 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8405 (An information disclosure vulnerability in kernel components including ...)
- linux 4.9.6-1
NOTE: Fixed by: https://git.kernel.org/linus/2dc705a9930b4806250fbf5a76e55266e59389f2
CVE-2016-8404 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8403 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8402 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8401 (An information disclosure vulnerability in kernel components including ...)
- - linux <undetermined>
+ - linux <not-affected> (Android-specific Linux components)
CVE-2016-8400 (An information disclosure vulnerability in the NVIDIA librm library ...)
NOT-FOR-US: NVIDIA driver for Android
CVE-2016-8399 (An elevation of privilege vulnerability in the kernel networking ...)
@@ -23753,31 +23753,31 @@
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=770143
NOTE: https://git.gnome.org/browse/eog/commit/?id=e99a8c00f959652fe7c10e2fa5a3a7a5c25e6af4
CVE-2016-6854 (An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6853 (An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6852 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6851 (An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6850 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6849
RESERVED
CVE-2016-6848 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6847 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6846
RESERVED
CVE-2016-6845 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6844 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6843 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6842 (An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-6841
RESERVED
CVE-2016-6840 (Cross-site scripting (XSS) vulnerability in the management interface ...)
@@ -29128,7 +29128,7 @@
CVE-2016-5304 (Open redirect vulnerability in a report-routing component in Symantec ...)
NOT-FOR-US: Symantec
CVE-2016-5303 (Cross-site scripting (XSS) vulnerability in the Horde Text Filter API ...)
- TODO: check
+ - php-horde-text-filter 2.3.5-1 (bug #837150)
CVE-2016-5302 (Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has ...)
NOT-FOR-US: Citrix
CVE-2015-8935 (The sapi_header_op function in main/SAPI.c in PHP before 5.4.38, 5.5.x ...)
@@ -30439,7 +30439,7 @@
CVE-2016-5125
RESERVED
CVE-2016-5124 (An issue was discovered in Open-Xchange OX App Suite before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-5123
RESERVED
CVE-2016-5122
@@ -36000,7 +36000,7 @@
CVE-2016-3175
RESERVED
CVE-2016-3174 (An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
TODO: check
CVE-2016-3173 (An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. ...)
TODO: check
@@ -36970,7 +36970,7 @@
CVE-2016-8000
REJECTED
CVE-2016-2840 (An issue was discovered in Open-Xchange Server 6 / OX AppSuite before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2016-2857 (The net_checksum_calculate function in net/checksum.c in QEMU allows ...)
{DLA-574-1 DLA-573-1}
- qemu 1:2.6+dfsg-1 (bug #817182)
@@ -49286,11 +49286,6 @@
RESERVED
CVE-2014-9752 (Unrestricted file upload vulnerability in ...)
NOT-FOR-US: ATutor
-CVE-2015-XXXX [EncryptedType uses static IV per key]
- - python-sqlalchemy-utils <unfixed>
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/06/7
- NOTE: https://github.com/kvesteri/sqlalchemy-utils/issues/166
- TODO: check
CVE-2015-7758 (Gummi 0.6.5 allows local users to write to arbitrary files via a ...)
- gummi 0.6.5-6 (bug #756432)
[jessie] - gummi 0.6.5-3+deb8u1
@@ -50319,7 +50314,7 @@
CVE-2015-7386 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
NOT-FOR-US: Gallery - Photo Albums - Portfolio plugin for WordPress
CVE-2015-7385 (Cross-site scripting (XSS) vulnerability in Open-Xchange OX Guard ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2015-7384 [HTTP Denial of Service Vulnerability]
RESERVED
- nodejs 4.1.1~dfsg-3 (bug #800580)
@@ -55561,7 +55556,7 @@
CVE-2015-5376
RESERVED
CVE-2015-5375 (Cross-site scripting (XSS) vulnerability in unspecified dialogs for ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
TODO: check
CVE-2015-5374 (The EN100 module with firmware before 4.25 for Siemens SIPROTEC 4 and ...)
NOT-FOR-US: Siemens
@@ -71053,7 +71048,7 @@
CVE-2014-9467
RESERVED
CVE-2014-9466 (Open-Xchange (OX) AppSuite and Server before 7.4.2-rev42, 7.6.0 before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-9464 (SQL injection vulnerability in Category.php in Microweber CMS 0.95 ...)
NOT-FOR-US: Microweber CMS
CVE-2014-9463
@@ -73324,7 +73319,7 @@
CVE-2014-8995 (SQL injection vulnerability in Maarch LetterBox 2.8 allows remote ...)
NOT-FOR-US: Maarch LetterBox
CVE-2014-8993 (Cross-site scripting (XSS) vulnerability in the backend in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-8992 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: MODX Revolution
CVE-2014-9030 (The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x ...)
@@ -77244,7 +77239,7 @@
CVE-2014-7872 (Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC ...)
NOT-FOR-US: Comodo GeekBuddy
CVE-2014-7871 (SQL injection vulnerability in Open-Xchange (OX) AppSuite before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-7870 (Cross-site scripting (XSS) vulnerability in the Custom Search module ...)
NOT-FOR-US: Drupal module Custom Search
CVE-2014-7869 (Cross-site scripting (XSS) vulnerability in the configuration UI in ...)
@@ -83242,16 +83237,16 @@
NOT-FOR-US: Microsoft
CVE-2014-5238
RESERVED
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-5237 (Server-side request forgery (SSRF) vulnerability in the ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-5236
RESERVED
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-5235 (Cross-site scripting (XSS) vulnerability in the frontend in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-5234 (Cross-site scripting (XSS) vulnerability in the backend in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2012-6654 (Multiple SQL injection vulnerabilities in ZPanel 10.0.1 and earlier ...)
NOT-FOR-US: ZPanel
CVE-2014-5274 (Cross-site scripting (XSS) vulnerability in the view operations page ...)
@@ -91150,11 +91145,11 @@
CVE-2014-2394
RESERVED
CVE-2014-2393 (Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-2392 (The E-Mail autoconfiguration feature in Open-Xchange AppSuite before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-2391 (The password recovery service in Open-Xchange AppSuite before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-2390 (Cross-site request forgery (CSRF) vulnerability in the User Management ...)
NOT-FOR-US: McAfee Network Security Manager
CVE-2014-2389 (Stack-based buffer overflow in a certain decryption function in ...)
@@ -91954,9 +91949,9 @@
[squeeze] - xfe <no-dsa> (Minor issue)
CVE-2014-2078
RESERVED
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-2077 (Cross-site scripting (XSS) vulnerability in the frontend in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-2076
RESERVED
CVE-2014-2075 (TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK ...)
@@ -93208,7 +93203,7 @@
CVE-2014-1680 (Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 ...)
NOT-FOR-US: Bandisoft Bandizip
CVE-2014-1679 (Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2014-1678
RESERVED
CVE-2014-1677 [Technicolor TC7200 - Credentials Disclosure]
@@ -96616,13 +96611,13 @@
CVE-2013-7144 (LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X ...)
NOT-FOR-US: LINE
CVE-2013-7143 (Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-7142 (Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-7141 (Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-7140 (XML External Entity (XXE) vulnerability in the CalDAV interface in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-7139 (SQL injection vulnerability in download.php in Horizon Quick Content ...)
NOT-FOR-US: Horizon CMS
CVE-2013-7138 (Directory traversal vulnerability in lib/functions/d-load.php in ...)
@@ -97172,7 +97167,7 @@
CVE-2013-6998
REJECTED
CVE-2013-6997 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-6996
RESERVED
CVE-2013-6995
@@ -100353,9 +100348,9 @@
- ingo1 <not-affected> (Affected code not present)
CVE-2013-6242
RESERVED
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-6241 (The Birthday widget in the backend in Open-Xchange (OX) AppSuite 7.2.x ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-6240
RESERVED
CVE-2013-6239
@@ -100698,7 +100693,7 @@
{DSA-2789-1}
- strongswan 5.1.0-3
CVE-2013-6074 (Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-6073
RESERVED
CVE-2013-6072
@@ -100864,7 +100859,7 @@
CVE-2013-6010 (Cross-site scripting (XSS) vulnerability in the Comment Attachment ...)
NOT-FOR-US: Wordpress Comment-Attachment plugin
CVE-2013-6009 (CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-6008
RESERVED
CVE-2013-6007
@@ -101016,11 +101011,11 @@
CVE-2013-5937 (Cross-site request forgery (CSRF) vulnerability in the Click2Sell ...)
NOT-FOR-US: Click2Sell Suite Drupal contributed module
CVE-2013-5936 (The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5935 (The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5934 (Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5933 (Stack-based buffer overflow in the sub_E110 function in init in a ...)
NOT-FOR-US: Motorola
CVE-2013-5932 (Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro ...)
@@ -101643,7 +101638,7 @@
CVE-2013-5699
RESERVED
CVE-2013-5698 (Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite and ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5697 (SQL injection vulnerability in mod_accounting.c in the mod_accounting ...)
- libapache-mod-acct <removed>
CVE-2013-5696 (inc/central.class.php in GLPI before 0.84.2 does not attempt to make ...)
@@ -101665,7 +101660,7 @@
[squeeze] - kfreebsd-8 <end-of-life> (Unsupported in squeeze-lts)
[wheezy] - kfreebsd-8 8.3-6+deb7u1
CVE-2013-5690 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5687
RESERVED
CVE-2013-5686
@@ -102897,7 +102892,7 @@
CVE-2013-5201
RESERVED
CVE-2013-5200 (The (1) REST and (2) memcache interfaces in the Hazelcast cluster API ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5199 (WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, ...)
NOT-FOR-US: Webkit / if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2013-5198 (WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, ...)
@@ -103233,7 +103228,7 @@
CVE-2013-5036 (The Square Squash allows remote attackers to execute arbitrary code ...)
NOT-FOR-US: Square Squash
CVE-2013-5035 (Multiple race conditions in HtmlCleaner before 2.6, as used in ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-5034 (Unspecified vulnerability in Atmail before 6.6.4, and 7.x before ...)
NOT-FOR-US: Atmail
CVE-2013-5033 (Unspecified vulnerability in Atmail before 6.6.4, and 7.x before ...)
@@ -103803,7 +103798,7 @@
CVE-2013-4791
RESERVED
CVE-2013-4790 (Open-Xchange AppSuite before 7.0.2 rev14, 7.2.0 before rev11, 7.2.1 ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-4789 (SQL injection vulnerability in modules/rss/rss.php in Cotonti before ...)
NOT-FOR-US: Cotonti
CVE-2013-4788 (The PTR_MANGLE implementation in the GNU C Library (aka glibc or ...)
@@ -108405,7 +108400,7 @@
CVE-2013-3107 (VMware vCenter Server 5.1 before Update 1, when anonymous LDAP binding ...)
NOT-FOR-US: vCenter
CVE-2013-3106 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-3105
RESERVED
CVE-2013-3104
@@ -109709,9 +109704,9 @@
CVE-2013-2584
RESERVED
CVE-2013-2583 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-2582 (CRLF injection vulnerability in the redirect servlet in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-2581 (cgi-bin/firmwareupgrade in TP-Link IP Cameras TL-SC3130, TL-SC3130G, ...)
NOT-FOR-US: TP-Link IP Cameras
CVE-2013-2580 (Unrestricted file upload vulnerability in cgi-bin/uploadfile in ...)
@@ -112982,19 +112977,19 @@
{DSA-2643-1}
- puppet 2.7.18-3
CVE-2013-1651 (OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1650 (Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1649 (Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1648 (The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1647 (Multiple CRLF injection vulnerabilities in Open-Xchange Server before ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1646 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1645 (Directory traversal vulnerability in Open-Xchange Server before 6.20.7 ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2013-1644
RESERVED
CVE-2013-1643 (The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows ...)
@@ -219826,7 +219821,7 @@
CVE-2006-2739 (PHP remote file inclusion vulnerability in footers.php in Epicdesigns ...)
NOT-FOR-US: tinyBB
CVE-2006-2738 (The open source version of Open-Xchange 0.8.2 and earlier uses a ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2006-2737 (utilities/register.asp in Nukedit 4.9.6 and earlier allows remote ...)
NOT-FOR-US: Nukedit
CVE-2006-2736 (PHP remote file inclusion vulnerability in blend_data/blend_common.php ...)
@@ -226379,7 +226374,7 @@
CVE-2006-0092
REJECTED
CVE-2006-0091 (Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange ...)
- - open-xchange <itp> (bug #269329)
+ NOT-FOR-US: Open-Xchange
CVE-2006-0090 (Directory traversal vulnerability in index.php in IDV Directory Viewer ...)
NOT-FOR-US: IDV Directory Viewer
CVE-2006-0089 (Buffer overflow in ESRI ArcPad 7.0.0.156 allows remote attackers to ...)
More information about the Secure-testing-commits
mailing list