Author: corsac Date: 2012-07-30 19:27:04 +0000 (Mon, 30 Jul 2012) New Revision: 19829 Modified: data/CVE/list Log: fix a bunch of TODO: check entries Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-07-30 19:14:35 UTC (rev 19828) +++ data/CVE/list 2012-07-30 19:27:04 UTC (rev 19829) @@ -1,5 +1,5 @@ CVE-2012-4068 (Heap-based buffer overflow in the SoapServer service in Citrix ...) - TODO: check + NOT-FOR-US: Citrix CVE-2012-4067 RESERVED CVE-2012-4066 @@ -13,43 +13,43 @@ CVE-2012-4062 RESERVED CVE-2012-4061 (Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow ...) - TODO: check + NOT-FOR-US: ASP-DEv XM Diary CVE-2012-4060 (Multiple SQL injection vulnerabilities in ASP-DEv XM Forums RC3 allow ...) - TODO: check + NOT-FOR-US: ASP-DEv XM Diary CVE-2012-4059 (Cross-site request forgery (CSRF) vulnerability in home/secretqtn.php ...) - TODO: check + NOT-FOR-US: Socketmail not in Debian CVE-2012-4058 (Cross-site scripting (XSS) vulnerability in SocketMail Pro 2.2.9 ...) - TODO: check + NOT-FOR-US: Socketmail not in Debian CVE-2012-4057 (Buffer overflow in the Player in Remote-Anything 5.60.15 allows remote ...) - TODO: check + NOT-FOR-US: Remote-Anything not in Debian CVE-2012-4056 (SQL injection vulnerability in index2.php in Uiga Personal Portal ...) - TODO: check + NOT-FOR-US: Uiga personal portal CVE-2012-4055 (SQL injection vulnerability in index2.php in Uiga Fan Club allows ...) - TODO: check + NOT-FOR-US: Uiga Fan Club CVE-2012-4054 (Buffer overflow in the readfile function in CPE17 Autorun Killer 1.7.1 ...) - TODO: check + NOT-FOR-US: CPE17 Autorun Killer not in Debian CVE-2012-4053 (Cross-site request forgery (CSRF) vulnerability in eZOE flash player ...) - TODO: check + NOT-FOR-US: eZOE flash player not in Debian CVE-2012-4052 RESERVED CVE-2012-4051 RESERVED CVE-2007-6754 (The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for ...) - TODO: check + NOT-FOR-US: NetBSD/FreeBSD libc CVE-2006-7252 (Integer overflow in the calloc function in libc/stdlib/malloc.c in ...) - TODO: check + NOT-FOR-US: NetBSD/FreeBSD libc CVE-2005-4895 (Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools ...) - TODO: check + - google-perftools 0.7-1 CVE-2012-4047 RESERVED CVE-2012-4046 RESERVED CVE-2012-4045 (Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 ...) - TODO: check + NOT-FOR-US: Winamp CVE-2012-4044 RESERVED CVE-2012-4043 (Cross-site scripting (XSS) vulnerability in global-protect/login.esp ...) - TODO: check + NOT-FOR-US: Palo Alto Networks software, not in Debian CVE-2012-4042 RESERVED CVE-2012-4041 @@ -81,11 +81,11 @@ NOTE: http://www.openwall.com/lists/oss-security/2012/07/24/1 NOTE: http://www.openwall.com/lists/oss-security/2012/07/24/2 CVE-2012-4033 (Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin ...) - TODO: check + NOT-FOR-US: Zingiri not in Debian CVE-2012-4032 (Open redirect vulnerability in the login page in WebsitePanel before ...) - TODO: check + NOT-FOR-US: WebsitePanel not in Debian CVE-2012-4031 (Multiple directory traversal vulnerabilities in src/acloglogin.php in ...) - TODO: check + NOT-FOR-US: Wangkongbao not in Debian CVE-2012-4030 RESERVED TODO: check