Author: nion Date: 2007-12-21 16:56:17 +0000 (Fri, 21 Dec 2007) New Revision: 7676 Modified: data/CVE/list Log: new issue: syslog-ng (CVE-2007-6437) Mac OS X NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-21 16:28:44 UTC (rev 7675) +++ data/CVE/list 2007-12-21 16:56:17 UTC (rev 7676) @@ -144,7 +144,7 @@ CVE-2007-6438 (Unspecified vulnerability in the SMB dissector in Wireshark (formerly ...) TODO: check CVE-2007-6437 (Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows ...) - TODO: check + - syslog-ng <unfixed> (low; bug #457334) CVE-2003-1538 (susehelp in SuSE Linux 8.1, Enterprise Server 8, Office Server, and ...) NOT-FOR-US: predating security tracker CVE-2008-0030 @@ -1566,39 +1566,39 @@ CVE-2007-5864 RESERVED CVE-2007-5863 (Software Update in Apple Mac OS X 10.5.1 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2007-5862 (Java in Mac OS X 10.4 through 10.4.11 allows remote attackers to ...) NOT-FOR-US: Cisco IP Phone 7940 CVE-2007-5861 (Unspecified vulnerability in Spotlight in Apple Mac OS X 10.4.11 ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2007-5860 (Unspecified vulnerability in Spin Tracer in Apple Mac OS X 10.5.1 ...) - TODO: check + NOT-FOR-US: Spin Tracer (Apple Mac OS X) CVE-2007-5859 (Unspecified vulnerability in Safari RSS in Apple Mac OS X 10.4.11 ...) - TODO: check + NOT-FOR-US: Safari RSS (Apple Mac OS X) CVE-2007-5858 (WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1 allows remote ...) - TODO: check + NOT-FOR-US: Safari (Apple Mac OS X) CVE-2007-5857 (Quick Look in Apple Mac OS X 10.5.1 does not prevent a movie from ...) - TODO: check + NOT-FOR-US: Quick Look (Apple Mac OS X) CVE-2007-5856 (Quick Look Apple Mac OS X 10.5.1, when previewing an HTML file, does ...) - TODO: check + NOT-FOR-US: Quick Look (Apple Mac OS X) CVE-2007-5855 (Mail in Apple Mac OS X 10.4.11 and 10.5.1, when an SMTP account has ...) - TODO: check + NOT-FOR-US: Mail (Apple Mac OS X) CVE-2007-5854 (Launch Services in Apple Mac OS X 10.4.11 and 10.5.1 does not treat ...) - TODO: check + NOT-FOR-US: Launch Services (Apple Mac OS X) CVE-2007-5853 (Unspecified vulnerability in IO Storage Family in Apple Mac OS X ...) - TODO: check + NOT-FOR-US: IO Storage Family (Apple Mac OS X) CVE-2007-5852 RESERVED CVE-2007-5851 (iChat in Apple Mac OS X 10.4.11 allows network-adjacent remote ...) - TODO: check + NOT-FOR-US: iChat (Apple Mac OS X) CVE-2007-5850 (Heap-based buffer overflow in Desktop Services in Apple Mac OS X ...) - TODO: check + NOT-FOR-US: Desktop Services (Apple Mac OS X) CVE-2007-5849 (Integer underflow in the asn1_get_string function in the SNMP back end ...) TODO: check CVE-2007-5848 (Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin ...) TODO: check CVE-2007-5847 (Race condition in the CFURLWriteDataAndPropertiesToResource API in ...) - TODO: check + NOT-FOR-US: Core Foundation (Apple Mac OS X) CVE-2007-5846 (The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote ...) {DTSA-88-1} - net-snmp 5.4.1~dfsg-1 @@ -2616,7 +2616,7 @@ - rss-glx 0.8.1-8 (medium) NOTE: proper fix available and uploaded CVE-2007-5584 (Unspecified vulnerability in Cisco Firewall Services Module (FWSM) ...) - TODO: check + NOT-FOR-US: Cisco CVE-2007-5583 (Cisco IP Phone 7940 with firmware P0S3-08-7-00 allows remote attackers ...) NOT-FOR-US: Cisco IP Phone CVE-2007-5582 (Cross-site scripting (XSS) vulnerability in the login page in Cisco ...) @@ -5141,11 +5141,11 @@ CVE-2007-4711 (Multiple cross-site scripting (XSS) vulnerabilities in Toms Gaestebuch ...) NOT-FOR-US: Toms Gaestebuch CVE-2007-4710 (Unspecified vulnerability in ColorSync in Apple Mac OS X 10.4.11 ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2007-4709 (Directory traversal vulnerability in CFNetwork in Apple Mac OS X ...) - TODO: check + NOT-FOR-US: CFNetwork (Apple Mac OS X) CVE-2007-4708 (Format string vulnerability in Address Book in Apple Mac OS X 10.4.11 ...) - TODO: check + NOT-FOR-US: Address Book (Apple Mac OS X) CVE-2007-4707 (Multiple unspecified vulnerabilities in the Flash media handler in ...) NOT-FOR-US: Apple QuickTime CVE-2007-4706 (Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows ...) @@ -7049,7 +7049,7 @@ CVE-2007-3881 (SQL injection vulnerability in index.php in Pictures Rating (Picture ...) NOT-FOR-US: Pictures Rating CVE-2007-3880 (Format string vulnerability in srsexec in Sun Remote Services (SRS) ...) - NOT-FOR-US: Net Connect + NOT-FOR-US: Net Connect CVE-2007-3879 RESERVED CVE-2007-3878 @@ -7057,7 +7057,7 @@ CVE-2007-3877 RESERVED CVE-2007-3876 (Stack-based buffer overflow in SMB in Apple Mac OS X 10.4.11 allows ...) - TODO: check + NOT-FOR-US: SMB (Apple Mac OS X) CVE-2007-3875 (arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) ...) NOT-FOR-US: CA Anti-Virus CVE-2007-3874 (Directory traversal vulnerability in the tftp/mftp daemon in the PXE ...)