thr3ads.net - Secure testing commits - [Secure-testing-commits] r6694

If this information is useful, please help other people find it:
Share via:

nion at alioth.debian.org

2007-Sep-25 12:20 UTC

[Secure-testing-commits] r6694 - data/CVE

Author: nion
Date: 2007-09-25 12:20:33 +0000 (Tue, 25 Sep 2007)
New Revision: 6694

Modified:
   data/CVE/list
Log:
NFUs
new issue: CVE-2007-1320 xen-3.0


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-09-25 12:06:04 UTC (rev 6693)
+++ data/CVE/list	2007-09-25 12:20:33 UTC (rev 6694)
@@ -81,25 +81,25 @@
 CVE-2007-5021 (Buffer overflow in the Client Acceptor Daemon (CAD) in certain
IBM ...)
 	NOT-FOR-US: IBM Tivoli Storage Manager
 CVE-2007-5020 (Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on
Windows ...)
-	TODO: check
+	NOT-FOR-US: Acrobat Reader
 CVE-2004-2687 (distcc 2.x, as used in XCode 1.5 and others, when not configured
to ...)
 	TODO: check
 CVE-2004-2686 (Directory traversal vulnerability in the vfs_getvfssw function
in ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2003-1339 (Stack-based buffer overflow in eZnet.exe, as used in eZ (a) ...)
-	TODO: check
+	NOT-FOR-US: eZnet
 CVE-2003-1338 (CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2
and ...)
-	TODO: check
+	NOT-FOR-US: Abyss Web Server
 CVE-2003-1337 (Heap-based buffer overflow in Aprelium Abyss Web Server 1.1.2
and ...)
-	TODO: check
+	NOT-FOR-US: Abyss Web Server
 CVE-2003-1336 (Buffer overflow in mIRC before 6.11 allows remote attackers to
execute ...)
-	TODO: check
+	NOT-FOR-US: mIRC
 CVE-2002-2226 (Buffer overflow in tftpd of TFTP32 2.21 and earlier allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Tftpd32
 CVE-2001-1583 (lpd daemon (in.lpd) in Solaris 8 and earlier allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2001-1582 (Buffer overflow in the LDAP naming services library (libsldap)
in Sun ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2007-XXXX [mimep insecure tempfile usage and insecure calls to LaTeX and
dvips]
 	- mp 3.7.1-8
 CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in
Java ...)
@@ -8761,6 +8761,7 @@
 CVE-2007-1320 (Multiple heap-based buffer overflows in the
cirrus_invalidate_region ...)
 	{DSA-1284-1 DTSA-38-1}
 	- qemu 0.9.0-2 (bug #424070)
+	- xen-3.0 <unfixed> (bug #444007; medium)
 CVE-2007-1319 (Unspecified vulnerability in the IOPCServer::RemoveGroup
function in ...)
 	NOT-FOR-US: DeviceXPlorer OLE
 CVE-2007-1318

Secure testing commits - Sep 2007 - r6694 - data/CVE

[Secure-testing-commits] r6694 - data/CVE