jmm-guest at alioth.debian.org
2007-Oct-18 16:07 UTC
[Secure-testing-commits] r7006 - data/CVE
Author: jmm-guest Date: 2007-10-18 16:07:36 +0000 (Thu, 18 Oct 2007) New Revision: 7006 Modified: data/CVE/list Log: remove NFUs for rejected issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-10-18 14:36:49 UTC (rev 7005) +++ data/CVE/list 2007-10-18 16:07:36 UTC (rev 7006) @@ -382,7 +382,7 @@ - phpbb2 2.0.13-6sarge3 NOTE: might be fixed in prior versions CVE-2002-2254 (The experimental IP packet queuing feature in Netfilter / IPTables in ...) - - linux-2.4 <removed> + - linux-2.6 <not-affected> (Fixed before initial upload into the archive, during 2.4) CVE-2002-2253 (Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier ...) - libsieve <not-affected> (was fixed in 2.1.3 before debian version was uploaded) CVE-2002-2252 (SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and ...) @@ -654,19 +654,14 @@ - alsaplayer 0.99.80~rc4-1 (medium; bug #446034) CVE-2007-5288 REJECTED - NOT-FOR-US: Hitachi TPBroker CVE-2007-5287 REJECTED - NOT-FOR-US: Hitachi Cosminexus Agent CVE-2007-5286 REJECTED - NOT-FOR-US: Hitachi Cosminexus CVE-2007-5285 REJECTED - NOT-FOR-US: Appfuse CVE-2007-5284 REJECTED - NOT-FOR-US: PowerArchiver CVE-2007-5283 (The TSC Domain Manager in Hitachi TPBroker Object Transaction Monitor ...) NOT-FOR-US: Hitachi TPBroker CVE-2007-5282 (Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library ...) @@ -1383,7 +1378,6 @@ NOT-FOR-US: IBM Tivoli Storage Manager CVE-2007-5021 REJECTED - NOT-FOR-US: IBM Tivoli Storage Manager CVE-2007-5020 (Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows ...) NOT-FOR-US: Acrobat Reader CVE-2004-2687 (distcc 2.x, as used in XCode 1.5 and others, when not configured to ...) @@ -3110,7 +3104,6 @@ NOT-FOR-US: IBM DB2 CVE-2007-4274 REJECTED - NOT-FOR-US: Duplicate of CVE-2007-4275 CVE-2007-4273 (IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local ...) NOT-FOR-US: IBM DB2 CVE-2007-4272 (Multiple vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 ...) @@ -4164,10 +4157,8 @@ NOT-FOR-US: Clavister CorePlus CVE-2007-3802 REJECTED - NOT-FOR-US: Symantec CVE-2007-3801 REJECTED - NOT-FOR-US: Symantec CVE-2007-3800 (Unspecified vulnerability in the Real-time scanner (RTVScan) component ...) NOT-FOR-US: Symantec CVE-2007-3799 (The session_start function in ext/session in PHP 4.x up to 4.4.7 and ...) @@ -9021,7 +9012,6 @@ NOT-FOR-US: ArcSDE CVE-2007-1769 REJECTED - NOT-FOR-US: Mephisto CVE-2007-1768 (Cross-site scripting (XSS) vulnerability in ...) NOT-FOR-US: Mephisto CVE-2007-1767 (Unspecified vulnerability in (1) Deskbar.dll and (2) Toolbar.dll in ...) @@ -9057,7 +9047,6 @@ RESERVED CVE-2007-1752 REJECTED - NOT-FOR-US: Microsoft CVE-2007-1751 (Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to ...) NOT-FOR-US: Microsoft CVE-2007-1750 (Unspecified vulnerability in Microsoft Internet Explorer 6 allows ...) @@ -9501,7 +9490,6 @@ NOT-FOR-US: Activist Mobilization Platform CVE-2007-1570 REJECTED - NOT-FOR-US: Haber Sistemi CVE-2007-1569 (Stack-based buffer overflow in NewsBin Pro 4.32 allows remote ...) NOT-FOR-US: NewsBin Pro CVE-2007-1568 (Stack-based buffer overflow in DaanSystems NewsReactor 20070220.21 ...) @@ -10928,7 +10916,6 @@ NOT-FOR-US: Rigter Portal System CVE-2006-7084 REJECTED - NOT-FOR-US: Rigter Portal System CVE-2006-7083 (Directory traversal vulnerability in index.php in Rigter Portal System ...) NOT-FOR-US: Rigter Portal System CVE-2006-7082 (Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers ...) @@ -12229,7 +12216,6 @@ NOT-FOR-US: MyBB (aka MyBulletinBoard) CVE-2007-0621 REJECTED - NOT-FOR-US: Microsoft Word CVE-2007-0620 (download.php in FD Script 1.3.2 and earlier allows remote attackers to ...) NOT-FOR-US: FD Script CVE-2007-0619 (chmlib before 0.39 allows user-assisted remote attackers to execute ...) @@ -13157,7 +13143,6 @@ NOTE: libgtop does not contain the affected code. CVE-2007-0234 REJECTED - NOTE: Duplicate of CVE-2007-0243 CVE-2007-0233 (wp-trackback.php in WordPress 2.0.6 and earlier does not properly ...) - wordpress 2.1.0-1 (unimportant) NOTE: This is argubly a php bug, CVE-2006-3017 @@ -15594,7 +15579,6 @@ NOT-FOR-US: fipsCMS CVE-2006-6114 REJECTED - NOT-FOR-US: Novell CVE-2006-6113 (Monkey Boards 0.3.5 allows remote attackers to obtain sensitive ...) NOT-FOR-US: Monkey Boards CVE-2006-6112 (LifeType 1.0.x and 1.1.x have insufficient access control for all of the PHP ...) @@ -15977,7 +15961,6 @@ NOT-FOR-US: Less Inventory Manager CVE-2006-5941 REJECTED - NOT-FOR-US: Solaris, see #400557 CVE-2006-5940 (Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has ...) NOT-FOR-US: Grisoft AVG Anti-Virus CVE-2006-5939 (Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause ...) @@ -18353,7 +18336,6 @@ NOT-FOR-US: Symantec CVE-2006-4854 REJECTED - NOT-FOR-US: Microsoft CVE-2006-4853 (SQL injection vulnerability in kategorix.asp in Haberx 1.02 through ...) NOT-FOR-US: Haberx CVE-2006-4852 (SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 ...) @@ -19706,7 +19688,6 @@ NOT-FOR-US: CatalogShop component for Mambo (com_catalogshop) CVE-2006-4274 REJECTED - NOT-FOR-US: Microsoft CVE-2006-4273 (Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 3.5.4 ...) NOT-FOR-US: Jelsoft vBulletin CVE-2006-4272 (** DISPUTED ** ...) @@ -19844,7 +19825,6 @@ NOT-FOR-US: WEBInsta CMS CVE-2006-4216 REJECTED - NOT-FOR-US: Chaussette CVE-2006-4215 (PHP remote file inclusion vulnerability in index.php in Zen Cart ...) NOT-FOR-US: Zen Cart CVE-2006-4214 (Multiple SQL injection vulnerabilities in Zen Cart 1.3.0.2 and earlier ...)