thijs at alioth.debian.org
2008-Mar-05 07:38 UTC
[Secure-testing-commits] r8261 - data/CVE
Author: thijs Date: 2008-03-05 07:38:39 +0000 (Wed, 05 Mar 2008) New Revision: 8261 Modified: data/CVE/list Log: xine-lib already fixed drupal not affected some NFU''s Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-03-04 21:29:55 UTC (rev 8260) +++ data/CVE/list 2008-03-05 07:38:39 UTC (rev 8261) @@ -1,48 +1,47 @@ CVE-2008-1132 (Untrusted search path vulnerability in src/mainwindow.c in Net ...) - TODO: check + NOT-FOR-US: Net Activity Viewer CVE-2008-1131 (Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote ...) - TODO: check + - drupal <not-affected> (Vulnerable code not present, affects only 6.x branch) CVE-2008-1130 (Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and ...) - TODO: check + NOT-FOR-US: WebSphere CVE-2008-1129 (Cross-site scripting (XSS) vulnerability in admin/users/self.php in ...) - TODO: check + NOT-FOR-US: XRMS CVE-2008-1128 (PHP remote file inclusion vulnerability in tourney/index.php in ...) - TODO: check + NOT-FOR-US: phpMyTourney CVE-2008-1127 (Format string vulnerability in the cryactio function in Crysis ...) - TODO: check + NOT-FOR-US: Crysis CVE-2008-1126 (PHP remote file inclusion vulnerability in main.php in Barryvan Compo ...) - TODO: check + NOT-FOR-US: Barryvan Compo Manager CVE-2008-1125 (Multiple directory traversal vulnerabilities in Podcast Generator 1.0 ...) - TODO: check + NOT-FOR-US: Podcast Generator CVE-2008-1124 (Multiple PHP remote file inclusion vulnerabilities in Podcast ...) - TODO: check + NOT-FOR-US: Podcast Generator CVE-2008-1123 (Multiple PHP remote file inclusion vulnerabilities in SiteBuilder ...) - TODO: check + NOT-FOR-US: SiteBuilder CVE-2008-1122 (SQL injection vulnerability in index.php in Koobi Pro 5.7 allows ...) - TODO: check + NOT-FOR-US: Koobi CVE-2008-1121 (SQL injection vulnerability in index.php in eazyPortal 1.0 and earlier ...) - TODO: check + NOT-FOR-US: eazyPortal CVE-2008-1120 (Format string vulnerability in the embedded Internet Explorer ...) - TODO: check + NOT-FOR-US: ICQ CVE-2008-1119 (Directory traversal vulnerability in include/doc/get_image.php in ...) - TODO: check + NOT-FOR-US: Centreon CVE-2008-1118 RESERVED CVE-2008-1117 RESERVED CVE-2008-1116 (Insecure method vulnerability in the Web Scan Object ActiveX control ...) - TODO: check + NOT-FOR-US: Rising Antivirus CVE-2008-1115 (Unspecified vulnerability in Sun Solaris 8 directory functions allows ...) - TODO: check + NOT-FOR-US: Sun Solaris CVE-2008-1114 (Vocera Communications wireless handsets, when using Protected ...) - TODO: check + NOT-FOR-US: Vocera CVE-2008-1113 (Cisco Unified Wireless IP Phone 7921, when using Protected Extensible ...) - TODO: check + NOT-FOR-US: Cisco CVE-2008-1112 REJECTED - TODO: check CVE-2008-1110 (Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the ...) - TODO: check + - xine-lib 1.1.10-1 CVE-2008-1109 RESERVED CVE-2008-1108 @@ -72,7 +71,7 @@ CVE-2008-1096 RESERVED CVE-2008-1095 (Unspecified vulnerability in the Internet Protocol (IP) implementation ...) - TODO: check + NOT-FOR-US: Sun Solaris CVE-2008-1094 RESERVED CVE-2008-1093 @@ -98,11 +97,11 @@ CVE-2008-1083 RESERVED CVE-2008-1082 (Opera before 9.26 allows remote attackers to "bypass sanitization ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-1081 (Opera before 9.26 allows user-assisted remote attackers to execute ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-1080 (Opera before 9.26 allows user-assisted remote attackers to read ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-1079 RESERVED CVE-2008-1078 (expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and ...)