Secure testing commits - Aug 2006 - r4555 - data/CVE

Author: stef-guest
Date: 2006-08-12 07:42:19 +0000 (Sat, 12 Aug 2006)
New Revision: 4555

Modified:
   data/CVE/list
Log:
- CVE-2006-4028: new wordpress issue already fixed
- CVE-2006-4041: new pike issue fixed in sid but not in sarge
- some NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-08-11 19:49:25 UTC (rev 4554)
+++ data/CVE/list	2006-08-12 07:42:19 UTC (rev 4555)
@@ -55,40 +55,41 @@
 CVE-2006-4045 (PHP remote file inclusion vulnerability in news.php in Torbstoff
News ...)
 	TODO: check
 CVE-2006-4044 (PHP remote file inclusion vulnerability in Beautifier/Core.php
in Brad ...)
-	TODO: check
+	NOT-FOR-US: phpCodeCabinet
 CVE-2006-4043 (index.php in myWebland myBloggie 2.1.4 and earlier allows remote
...)
-	TODO: check
+	NOT-FOR-US: myWebland myBloggie
 CVE-2006-4042 (Multiple SQL injection vulnerabilities in trackback.php in
myWebland ...)
-	TODO: check
+	NOT-FOR-US: myWebland myBloggie
 CVE-2006-4041 (SQL injection vulnerability in Pike before 7.6.86, when using a
...)
-	TODO: check
+	- pike7.6 7.6.86-1
+	[sarge] - pike7.2 <unfixed> (bug filed)
 CVE-2006-4040 (PHP remote file inclusion vulnerability in myevent.php in
myWebland ...)
-	TODO: check
+	NOT-FOR-US: myWebland myEvent
 CVE-2006-4039 (Multiple SQL injection vulnerabilities in eintragen.php in
GaesteChaos ...)
-	TODO: check
+	NOT-FOR-US: GaesteChaos
 CVE-2006-4038 (Multiple cross-site scripting (XSS) vulnerabilities in
eintragen.php ...)
-	TODO: check
+	NOT-FOR-US: GaesteChaos
 CVE-2006-4037 (Unspecified vulnerability in Fenestrae Faxination Server allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Fenestrae Faxination Server
 CVE-2006-4036 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: ZoneX Publishers
 CVE-2006-4035 (SQL injection vulnerability in counterchaos.php in CounterChaos
0.48c ...)
-	TODO: check
+	NOT-FOR-US: CounterChaos
 CVE-2006-4034 (PHP remote file inclusion vulnerability in
include/html/config.php in ...)
-	TODO: check
+	NOT-FOR-US: ModernGigabyte ModernBill
 CVE-2006-4033 (Heap-based buffer overflow in Lhaplus.exe in Lhaplus 1.52, and
...)
-	TODO: check
+	NOT-FOR-US: Lhaplus
 CVE-2006-4032 (Unspecified vulnerability in Cisco IOS CallManager Express (CME)
...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2006-4031 (MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local
user to ...)
 	- mysql-dfsg-5.0 <unfixed> (bug #382415; low)
 	- mysql-dfsg <unfixed> (low)
 CVE-2006-4030
 	RESERVED
 CVE-2006-4029 (Stack-based buffer overflow in sipd.dll in AGEphone 1.24 and
1.38.1 ...)
-	TODO: check
+	NOT-FOR-US: AGEphone
 CVE-2006-4028 (Multiple unspecified vulnerabilities in WordPress before 2.0.4
have ...)
-	TODO: check
+	- wordpress 2.0.4-1
 CVE-2006-4027
 	RESERVED
 CVE-2006-XXXX [realtime-lsm-source: wrong permissions might lead to local root]