Author: nion Date: 2007-12-01 15:07:49 +0000 (Sat, 01 Dec 2007) New Revision: 7459 Modified: data/CVE/list Log: NFUs CVE-2007-6063 unfixed, kernel-sec Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-01 14:59:22 UTC (rev 7458) +++ data/CVE/list 2007-12-01 15:07:49 UTC (rev 7459) @@ -125,7 +125,7 @@ CVE-2007-6134 (SQL injection vulnerability in pkinc/public/article.php in PHPKIT ...) NOT-FOR-US: PHPKIT CVE-2007-6133 (PHP remote file inclusion vulnerability in admin/kfm/initialise.php in ...) - TODO: check + NOT-FOR-US: DevMass Shopping Cart CVE-2007-XXXX [zabbix-agent runs as gid 0] - zabbix <unfixed> (bug #452682) CVE-2007-6183 (Format string vulnerability in the mdiag_initialize function in ...) @@ -257,7 +257,8 @@ CVE-2007-6064 RESERVED CVE-2007-6063 (Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux ...) - TODO: check kernel (kernel sec team) + - linux-2.6 <unfixed> + NOTE: kernel-sec is aware of this CVE-2007-6062 (irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause ...) - ngircd 0.10.3-1 [etch] - ngircd <no-dsa> (Minor issue) @@ -4414,7 +4415,7 @@ CVE-2007-4675 (Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in ...) NOT-FOR-US: Apple QuickTime CVE-2007-4674 (An "integer arithmetic" error in Apple QuickTime 7.2 allows remote ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2007-4673 (Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP ...) NOT-FOR-US: Apple QuickTime CVE-2007-4672 (Stack-based buffer overflow in Apple QuickTime before 7.3 allows ...) @@ -5224,9 +5225,9 @@ CVE-2007-4348 (Cross-site scripting (XSS) vulnerability in the CAD service in IBM ...) NOT-FOR-US: IBM Tivoli Storage Manager CVE-2007-4347 (Multiple integer overflows in the Job Engine (bengine.exe) service in ...) - TODO: check + NOT-FOR-US: Job Engine CVE-2007-4346 (The Job Engine (bengine.exe) service in Symantec Backup Exec for ...) - TODO: check + NOT-FOR-US: Job Engine CVE-2007-4345 (Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail ...) NOT-FOR-US: IMail Client CVE-2007-4344 (Multiple input validation errors in ACD ACDSee Photo Manager 9.0 build ...)