Secure testing commits - Mar 2006 - r3705 - data/CVE

Author: jmm-guest
Date: 2006-03-28 13:41:04 +0000 (Tue, 28 Mar 2006)
New Revision: 3705

Modified:
   data/CVE/list
Log:
new mysql5 issue
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-03-28 13:09:49 UTC (rev 3704)
+++ data/CVE/list	2006-03-28 13:41:04 UTC (rev 3705)
@@ -1062,34 +1062,33 @@
 	- bugzilla <unfixed> (bug #354457)
 	[woody] - bugzilla <not-affected> (Only 2.17 and above are affected)
 	[sarge] - bugzilla <not-affected> (Only 2.17 and above are affected)
-begin claimed by jmm
 CVE-2006-0912 (Oreka before 0.5 allows remote attackers to cause a denial of
service ...)
-	TODO: check
+	NOT-FOR-US: Oreka
 CVE-2006-0911 (NmService.exe in Ipswitch WhatsUp Professional 2006 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: WhatsUp Professional
 CVE-2006-0910 (Invision Power Board (IPB) 2.1.4 and earlier allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board
 CVE-2006-0909 (Invision Power Board (IPB) 2.1.4 and earlier allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board
 CVE-2006-0908 (PHP-Nuke 7.8 Patched 3.2 allows remote attackers to bypass SQL
...)
-	TODO: check
+	NOT-FOR-US: PHP-Nuke
 CVE-2006-0907 (SQL injection vulnerability in PHP-Nuke before 7.8 Patched 3.2
allows ...)
-	TODO: check
+	NOT-FOR-US: PHP-Nuke
 CVE-2006-0906 (SQL injection vulnerability in D3Jeeb Pro 3 allows remote
attackers to ...)
-	TODO: check
+	NOT-FOR-US: D3Jeeb Pro
 CVE-2006-0905 (A &quot;programming error&quot; in fast_ipsec in FreeBSD
4.8-RELEASE through ...)
-	TODO: check
+	NOT-FOR-US: FreeBSD
 CVE-2006-0904
 	RESERVED
 CVE-2006-0903 (MySQL 5.0.18 and earlier allows local users to bypass logging
...)
-	TODO: check
+	- mysql-dfsg-5.0 <unfixed> (bug filed)
 CVE-2006-0902
 	RESERVED
 CVE-2006-0901 (Unspecified vulnerability in the hsfs filesystem in Solaris 8,
9, and ...)
-	TODO: check
-end claimed by jmm
+	NOT-FOR-US: Solaris
 CVE-2006-0900 (nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a
denial ...)
 	- kfreebsd-5 5.4-15
+begin claimed by jmm
 CVE-2006-0899 (Directory traversal vulnerability in index.php in 4Images 1.7.1
and ...)
 	TODO: check
 CVE-2006-0898 (Crypt::CBC Perl module 2.16 and earlier, when running in
RandomIV ...)
@@ -1123,6 +1122,7 @@
 	TODO: check
 CVE-2006-0884 (The WYSIWYG rendering engine in Mozilla Thunderbird 1.0.7 and
earlier ...)
 	TODO: check
+end claimed by jmm
 CVE-2003-1295 (Unspecified vulnerability in xscreensaver 4.12, and possibly
other ...)
 	TODO: check
 CVE-2003-1294 (Xscreensaver before 4.15 creates temporary files insecurely in
(1) ...)