Author: stef-guest
Date: 2006-12-02 00:11:20 +0100 (Sat, 02 Dec 2006)
New Revision: 5044
Modified:
data/CVE/list
Log:
remove some more obsolete TODOs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-12-01 23:03:20 UTC (rev 5043)
+++ data/CVE/list 2006-12-01 23:11:20 UTC (rev 5044)
@@ -34123,14 +34123,12 @@
CVE-2003-0695 (Multiple "buffer management errors" in OpenSSH
before 3.7.1 may allow ...)
{DSA-383 DSA-382}
- openssh 1:3.7.1
- TODO: openssh-krb5: Screwy changelog does not make sense (bug #264717).
CVE-2003-0694 (The prescan function in Sendmail 8.12.9 allows remote attackers
to ...)
{DSA-384}
- sendmail 8.12.10-1
CVE-2003-0693 (A "buffer management error" in
buffer_append_space of buffer.c for ...)
{DSA-383 DSA-382}
- openssh 1:3.6.1p2-6.0
- TODO: openssh-krb5: Screwy changelog does not make sense (bug #264717).
CVE-2003-0692 (KDM in KDE 3.1.3 and earlier uses a weak session cookie
generation ...)
{DSA-388}
- kdebase 4:3.2
@@ -36798,7 +36796,6 @@
NOT-FOR-US: realsecure/blackice
CVE-2004-0191 (Mozilla before 1.4.2 executes Javascript events in the context
of a ...)
- mozilla-browser 2:1.7.3
- TODO: test
CVE-2004-0190 (Symantec FireWall/VPN Appliance model 200 records a cleartext
...)
NOT-FOR-US: symantec
CVE-2004-0189 (The "%xx" URL decoding function in Squid
2.5STABLE4 and earlier allows ...)
@@ -36876,12 +36873,10 @@
NOT-FOR-US: os x
CVE-2004-0082 (The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and
...)
- samba 3.0.7
- TODO: test
CVE-2004-0080 (The login program in util-linux 2.11 and earlier uses a pointer
after ...)
NOT-FOR-US: debian uses different login
CVE-2004-0078 (Buffer overflow in the index menu code (menu_pad_string of
menu.c) for ...)
- mutt 1.5.6-20040722+1
- TODO: test
CVE-2004-0077 (The do_mremap function for the mremap system call in Linux 2.2
to ...)
{DSA-514 DSA-475 DSA-470 DSA-466 DSA-456 DSA-454 DSA-453 DSA-450 DSA-444
DSA-442 DSA-441 DSA-440 DSA-439 DSA-438}
- kernel-source-2.4.27 <not-affected> (Fixed before initial upload;
2.4.26-pre3)
@@ -36889,7 +36884,6 @@
CVE-2004-0075 (The Vicam USB driver in Linux before 2.4.25 does not use the
...)
- kernel-source-2.4.24 2.4.24-3
NOTE: fixed in 2.4.26-pre3
- TODO: test
CVE-2004-0070 (PHP remote file inclusion vulnerability in module.php for
ezContents ...)
NOT-FOR-US: ezcontents, commercial
CVE-2004-0068 (PHP remote file inclusion vulnerability in config.php for PhpDig
1.6.5 ...)
@@ -36932,7 +36926,6 @@
- fsp 2.81.b18-1
CVE-2004-0009 (Apache-SSL 1.3.28+1.52 and earlier, with SSLVerifyClient set to
1 or 3 ...)
- apache-ssl 1.3.31
- TODO: test
CVE-2004-0004 (The libCheckSignature function in crypto-utils.lib for OpenCA
0.9.1.6 ...)
NOT-FOR-US: openca, not in debian
CVE-2004-0001 (Unknown vulnerability in the eflags checking in the 32-bit
ptrace ...)