thr3ads.net - Secure testing commits - [Secure-testing-commits] r6725

If this information is useful, please help other people find it:
Share via:
nion at alioth.debian.org
2007-Sep-27 11:40 UTC
[Secure-testing-commits] r6725 - data/CVE

Author: nion
Date: 2007-09-27 11:40:15 +0000 (Thu, 27 Sep 2007)
New Revision: 6725

Modified:
   data/CVE/list
Log:
NFUs
CVE-2007-0063, CVE-2007-0062, CVE-2007-0061 vmware-package not affected


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-09-27 11:31:43 UTC (rev 6724)
+++ data/CVE/list	2007-09-27 11:40:15 UTC (rev 6725)
@@ -4133,7 +4133,7 @@
 CVE-2007-3287
 	RESERVED
 CVE-2007-3286 (Multiple buffer overflows in unspecified ActiveX controls in COM
...)
-	TODO: check
+	NOT-FOR-US: Avaya IP Softphone
 CVE-2007-3285 (Mozilla Firefox before 2.0.0.5, when run on Windows, allows
remote ...)
 	- iceweasel <not-affected> (Affects only Firefox in Windows)
 CVE-2007-3284 (corefoundation.dll in Apple Safari 3.0.1 (552.12.2) for Windows
allows ...)
@@ -4799,7 +4799,7 @@
 CVE-2007-3011 (The DBAsciiAccess CGI Script in the web interface in
Fujitsu-Siemens ...)
 	NOT-FOR-US: Fujitsu-Siemens
 CVE-2007-3010 (masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX
...)
-	TODO: check
+	NOT-FOR-US: Alcatel OmniPCX Enterprise Communication Server
 CVE-2007-3009 (Format string vulnerability in the MprLogToFile::logEvent
function in ...)
 	NOT-FOR-US: Mbedthis AppWeb
 CVE-2007-3008 (Mbedthis AppWeb before 2.2.2 enables the HTTP TRACE method,
which has ...)
@@ -8450,10 +8450,8 @@
 	NOT-FOR-US: dproxy
 CVE-2007-1464 (Format string vulnerability in the whiteboard Jabber protocol in
...)
 	- inkscape 0.45.1-1 (medium)
-	TODO: File bug
 CVE-2007-1463 (Format string vulnerability in Inkscape before 0.45.1 allows
...)
 	- inkscape 0.45.1-1 (low)
-	TODO: File bug
 CVE-2007-1462 (The luci server component in conga preserves the password
between page ...)
 	NOT-FOR-US: conga
 CVE-2007-1461 (The compress.bzip2:// URL wrapper provided by the bz2 extension
in PHP ...)
@@ -11626,7 +11624,7 @@
 CVE-2007-0327
 	RESERVED
 CVE-2007-0326 (Multiple stack-based buffer overflows in the PhotoChannel
Networks PNI ...)
-	TODO: check
+	NOT-FOR-US: PNI Digital Media Photo Upload
 CVE-2007-0325 (Multiple buffer overflows in the Trend Micro OfficeScan
Web-Deployment ...)
 	NOT-FOR-US: Trend Micro OfficeScan
 CVE-2007-0324 (Multiple buffer overflows in the LizardTech DjVu Browser Plug-in
...)
@@ -12305,11 +12303,11 @@
 CVE-2007-0064
 	RESERVED
 CVE-2007-0063 (Integer underflow in the DHCP server in EMC VMware Workstation
before ...)
-	TODO: check
+	- vmware-package <not-affected> (package just downloads vmware
components, fixed upstream)
 CVE-2007-0062 (Integer overflow in the DHCP server in EMC VMware Workstation
before ...)
-	TODO: check
+	- vmware-package <not-affected> (package just downloads vmware
components, fixed upstream)
 CVE-2007-0061 (The DHCP server in EMC VMware Workstation before 5.5.5 Build
56455 and ...)
-	TODO: check
+	- vmware-package <not-affected> (package just downloads vmware
components, fixed upstream)
 CVE-2007-0060 (Stack-based buffer overflow in the Message Queuing Server
(Cam.exe) in ...)
 	NOT-FOR-US: CA
 CVE-2007-0059 (Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3
...)
Secure testing commits - Sep 2007 - r6725 - data/CVE

[Secure-testing-commits] r6725 - data/CVE
