white at alioth.debian.org
2008-Jun-06 13:39 UTC
[Secure-testing-commits] r8998 - data/CVE
Author: white Date: 2008-06-06 13:39:26 +0000 (Fri, 06 Jun 2008) New Revision: 8998 Modified: data/CVE/list Log: NFUs; duplicate of slash Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-06-06 13:36:21 UTC (rev 8997) +++ data/CVE/list 2008-06-06 13:39:26 UTC (rev 8998) @@ -11,19 +11,20 @@ CVE-2008-2554 (Multiple SQL injection vulnerabilities in BP Blog 6.0 allow remote ...) NOT-FOR-US: BP Blog CVE-2008-2553 (Cross-site scripting (XSS) vulnerability in Slashdot Like Automated ...) - TODO: check + - slash <unfixed> (medium; bug #484499) + NOTE: See CVE-2008-2231 CVE-2008-2552 (Unspecified vulnerability in the Service Tag Registry on Sun Solaris ...) - TODO: check + NOT-FOR-US: Sun Solaris CVE-2008-2551 (The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 ...) - TODO: check + NOT-FOR-US: DownloaderActiveX Control CVE-2008-2550 (Unspecified vulnerability in the Web Services Security component in ...) - TODO: check + NOT-FOR-US: IBM WebSphere Application Server CVE-2008-2549 (Adobe Acrobat Reader 8.1.2 and earlier allows remote attackers to ...) - TODO: check + NOT-FOR-US: Acrobat Reader CVE-2008-2548 (Stack-based buffer overflow in the JPEG thumbprint component in the ...) - TODO: check + NOT-FOR-US: JPEG thumbprint component in the EXIF parser on Motorola cell phones CVE-2008-2547 (Stack-based buffer overflow in msiexec.exe 3.1.4000.1823 and ...) - TODO: check + NOT-FOR-US: Microsoft Windows Installer CVE-2008-2546 RESERVED CVE-2008-2545 @@ -667,6 +668,7 @@ RESERVED CVE-2008-2231 (SQL injection vulnerability in Slashdot Like Automated Storytelling ...) - slash <unfixed> (medium; bug #484499) + NOTE: See CVE-2008-2553 CVE-2008-2230 [reportbug and reportbug-ng includes os.curdir in path] RESERVED - reportbug 3.41 (low; bug #484311)