Author: nion Date: 2007-11-05 10:45:29 +0000 (Mon, 05 Nov 2007) New Revision: 7217 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-11-04 21:14:07 UTC (rev 7216) +++ data/CVE/list 2007-11-05 10:45:29 UTC (rev 7217) @@ -6145,7 +6145,7 @@ - mozilla-firefox <removed> NOTE: MFSA2007-32 CVE-2007-3510 (Buffer overflow in the IMAP service in IBM Lotus Domino before 6.5.6 ...) - TODO: check + NOT-FOR-US: IBM Lotus Domino CVE-2007-3509 (Heap-based buffer overflow in the RPC subsystem in Symantec Backup ...) NOT-FOR-US: Symantec CVE-2007-3508 (** DISPUTED ** ...) @@ -7493,7 +7493,7 @@ NOTE: the cvs referenced in redhat bugzilla is not available anymore however NOTE: http://www.colino.net/claws-mail/getpatchset.php3?ver=2.10.0cvs153 fixes the bug CVE-2007-2957 (Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, ...) - TODO: check + NOT-FOR-US: McAfee on Solaris CVE-2007-2956 (Stack-based buffer overflow in the readRadianceHeader function in (1) ...) NOT-FOR-US: Qtpfsgui and pfstools CVE-2007-2955 (Multiple unspecified "input validation error" vulnerabilities in ...) @@ -9135,9 +9135,9 @@ CVE-2007-2265 (Cross-site scripting (XSS) vulnerability in YA Book 0.98-alpha allows ...) NOT-FOR-US: YA Book CVE-2007-2264 (Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, and 10.1; ...) - TODO: check + NOT-FOR-US: RealPlayer CVE-2007-2263 (Heap-based buffer overflow in RealNetworks RealPlayer 10.0 and 10.1, ...) - TODO: check + NOT-FOR-US: RealPlayer CVE-2006-7197 (The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for ...) - tomcat5.5 5.5.17-1 (low) CVE-2005-4838 (Multiple cross-site scripting (XSS) vulnerabilities in the example web ...)