thr3ads.net - Secure testing commits - [Secure-testing-commits] r6412

If this information is useful, please help other people find it:
Share via:
thijs at alioth.debian.org
2007-Aug-27 11:08 UTC
[Secure-testing-commits] r6412 - data/CVE

Author: thijs
Date: 2007-08-27 11:08:58 +0000 (Mon, 27 Aug 2007)
New Revision: 6412

Modified:
   data/CVE/list
Log:
old pam issue fixed in recent upload
correct one NFU
10 NFU''s


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-08-26 20:06:14 UTC (rev 6411)
+++ data/CVE/list	2007-08-27 11:08:58 UTC (rev 6412)
@@ -81,25 +81,25 @@
 CVE-2007-4427 (Unspecified vulnerability in the login page redirection logic in
the ...)
 	NOT-FOR-US: InterSystems Cache
 CVE-2007-4426 (Live for Speed (LFS) S1 and S2 allows remote attackers to cause
a ...)
-	TODO: check
+	NOT-FOR-US: Live for Speed
 CVE-2007-4425 (Multiple buffer overflows in Live for Speed (LFS) demo, S1, and
S2 ...)
-	TODO: check
+	NOT-FOR-US: Live for Speed
 CVE-2007-4424 (Apple Safari for Windows 3.0.3 and earlier does not prompt the
user ...)
-	NOT-FOR-US: Skype
+	NOT-FOR-US: Safari
 CVE-2007-4423 (Unspecified vulnerability in the AUTH_LIST_GROUPS_FOR_AUTHID
function ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4422 (The login interface in Symantec Enterprise Firewall 6.x, when a
VPN ...)
-	TODO: check
+	NOT-FOR-US: Symantec Enterprise Firewall
 CVE-2007-4421 (SQL injection vulnerability in Admin.php in Olate Download (od)
3.4.1 ...)
-	TODO: check
+	NOT-FOR-US: Olate Download
 CVE-2007-4420 (Absolute path traversal vulnerability in a certain ActiveX
control in ...)
-	TODO: check
+	NOT-FOR-US: EDraw Office Viewer Component
 CVE-2007-4419 (Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the
admin ...)
-	TODO: check
+	NOT-FOR-US: Olate Download
 CVE-2007-4418 (IBM DB2 UDB 8 before Fixpak 15 does not properly check
authorization, ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4417 (IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not
...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4416 (** DISPUTED ** ...)
 	TODO: check
 CVE-2007-4415 (Cisco VPN Client on Windows before 5.0.01.0600, and the
5.0.01.0600 ...)
@@ -109,7 +109,7 @@
 CVE-2007-4413 (Direct static code injection vulnerability in
admincp/user_help.php in ...)
 	NOT-FOR-US: Headstart Solutions DeskPRO 3.0.2
 CVE-2007-4412 (Multiple cross-site scripting (XSS) vulnerabilities in Headstart
...)
-	TODO: check
+	NOT-FOR-US: Deskpro
 CVE-2007-4411 (ircu 2.10.12.05 and earlier allows remote attackers to discover
the ...)
 	- ircd-ircu <unfixed> (bug #439314)
 CVE-2007-4410 (ircu 2.10.12.05 and earlier does not properly synchronize a kick
...)
@@ -31769,7 +31769,7 @@
 	{DSA-878-1}
 	- netpbm-free 2:10.0-10
 CVE-2005-2977 (The SELinux version of PAM before 0.78 r3 allows local users to
...)
-	- pam <unfixed> (bug #336344; low)
+	- pam 0.99.7.1-2 (bug #336344; low)
 	[sarge] - pam <not-affected> (Does not contain SELinux support)
 	[woody] - pam <not-affected> (Does not contain SELinux support)
 CVE-2005-2976 (Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before
2.8.7 ...)
Secure testing commits - Aug 2007 - r6412 - data/CVE

[Secure-testing-commits] r6412 - data/CVE
