Author: jmm-guest Date: 2006-03-16 11:15:15 +0000 (Thu, 16 Mar 2006) New Revision: 3624 Modified: data/CVE/list Log: firebird not-affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-03-16 10:25:47 UTC (rev 3623) +++ data/CVE/list 2006-03-16 11:15:15 UTC (rev 3624) @@ -7,9 +7,9 @@ CVE-2006-1242 (Certain Linux 2.4 and 2.6 kernels increment the IP ID field after ...) TODO: check CVE-2006-1241 (Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) ...) - TODO: check + - firebird2 <not-affected> (Not setuid in Debian) CVE-2006-1240 (Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) ...) - TODO: check + - firebird2 <not-affected> (Not setuid in Debian) CVE-2006-1239 (Cross-site scripting (XSS) vulnerability in issue/createissue.aspx in ...) TODO: check CVE-2006-1238 (SQL injection vulnerability in DSLogin 1.0, with magic_quotes_gpc ...) @@ -1073,7 +1073,7 @@ CVE-2006-0744 RESERVED CVE-2006-0743 (Format string vulnerability in LocalSyslogAppender in Apache log4net ...) - TODO: check + NOT-FOR-US: Log4Net CVE-2006-0742 (The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux ...) - linux-2.6 2.6.15-8 CVE-2006-0741 (Linux kernel before 2.6.15.5, when running on Intel processors, allows ...)