Author: nion Date: 2008-10-02 13:44:31 +0000 (Thu, 02 Oct 2008) New Revision: 9952 Modified: data/CVE/list Log: NFU CVE-2008-4324 non-issue (iceweasel) Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-02 13:19:12 UTC (rev 9951) +++ data/CVE/list 2008-10-02 13:44:31 UTC (rev 9952) @@ -76,7 +76,7 @@ CVE-2008-4339 (Unspecified vulnerability in the Java Administration GUI (jnbSA) in ...) NOT-FOR-US: Symantec Veritas NetBackup Server CVE-2008-4338 (SQL injection vulnerability in the brilliant_gallery_checklist_save ...) - TODO: check + NOT-FOR-US: drupal brilliant gallery 3rd party module CVE-2008-4337 (Cross-site scripting (XSS) vulnerability in Bitweaver 2.0.2 allows ...) NOT-FOR-US: Bitweaver CVE-2008-4336 (Cross-site scripting (XSS) vulnerability in album.php in Atomic Photo ...) @@ -104,7 +104,8 @@ CVE-2008-4325 (lib/viewvc.py in ViewVC 1.0.5 uses the content-type parameter in the ...) - viewvc <unfixed> (bug #500779; unimportant) CVE-2008-4324 (The user interface event dispatcher in Mozilla Firefox 3.0.3 on ...) - TODO: check + - iceweasel <unfixed> (unimportant) + NOTE: reproducible but browser DoS not treated as security issue CVE-2008-4323 (Windows Explorer in Microsoft Windows XP SP3 allows user-assisted ...) NOT-FOR-US: Windows Explorer CVE-2008-4322 (Stack-based buffer overflow in RealFlex Technologies Ltd. RealWin ...)