jmm-guest at alioth.debian.org
2008-Mar-27 09:43 UTC
[Secure-testing-commits] r8421 - data/CVE
Author: jmm-guest Date: 2008-03-27 09:43:54 +0000 (Thu, 27 Mar 2008) New Revision: 8421 Modified: data/CVE/list Log: three viewvc issues (I forgot them to commit to SVN earlier) NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-03-27 09:35:40 UTC (rev 8420) +++ data/CVE/list 2008-03-27 09:43:54 UTC (rev 8421) @@ -280,9 +280,9 @@ CVE-2008-1393 (Plone CMS 3.0.5, and probably other 3.x versions, places a base64 ...) TODO: check CVE-2008-1392 (The default configuration of VMware Workstation 6.0.2, VMware Player ...) - TODO: check + NOT-FOR-US: Vmware CVE-2007-6711 (Unspecified vulnerability in customer.php in FreeWebshop.org 2.2.5, ...) - TODO: check + NOT-FOR-US: FreeWebShop.org CVE-2005-4873 (Multiple stack-based buffer overflows in the phpcups PHP module for ...) TODO: check CVE-2008-1476 (Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before ...) @@ -360,13 +360,13 @@ CVE-2008-1365 (Stack-based buffer overflow in Trend Micro OfficeScan Corporate ...) NOT-FOR-US: Trend Micro OfficeScan Corporate Edition CVE-2008-1364 (Unspecified vulnerability in the DHCP service in VMware Workstation ...) - TODO: check + NOT-FOR-US: VMware CVE-2008-1363 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...) - TODO: check + NOT-FOR-US: VMware CVE-2008-1362 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...) - TODO: check + NOT-FOR-US: VMware CVE-2008-1361 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...) - TODO: check + NOT-FOR-US: VMware CVE-2008-1359 (Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB ...) NOT-FOR-US: Invision Power Board CVE-2008-1358 (Sack-based buffer overflow in the IMAP server in Alt-N Technologies ...) @@ -406,7 +406,7 @@ CVE-2008-1341 (SQL injection vulnerability in SearchResults.aspx in LaGarde ...) NOT-FOR-US: LaGarde StoreFront CVE-2008-1340 (Virtual Machine Communication Interface (VMCI) in VMware Workstation ...) - TODO: check + NOT-FOR-US: VMware CVE-2008-1339 RESERVED CVE-2008-1338 (The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and ...) @@ -501,11 +501,11 @@ CVE-2008-1295 (SQL injection vulnerability in archives.php in Gregory Kokanosky (aka ...) NOT-FOR-US: phpMyNewsletter CVE-2008-1292 (ViewVC before 1.0.5 provides revision metadata without properly ...) - TODO: check + - viewvc <unfixed> (bug #471380) CVE-2008-1291 (ViewVC before 1.0.5 stores sensitive information under the web root ...) - TODO: check + - viewvc <unfixed> (bug #471380) CVE-2008-1290 (ViewVC before 1.0.5 includes "all-forbidden" files within search ...) - TODO: check + - viewvc <unfixed> (bug #471380) CVE-2008-1289 (Multiple buffer overflows in Asterisk Open Source 1.4.x before ...) - asterisk 1:1.4.18.1~dfsg-1 (medium) [etch] - asterisk <not-affected> (Only 1.4.x and above affected) @@ -711,7 +711,7 @@ CVE-2008-1200 (Unspecified vulnerability in Microsoft Access allows remote ...) NOT-FOR-US: Microsoft Access CVE-2008-1198 (The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 ...) - TODO: check + NOT-FOR-US: Adobe Flash CS3 Professional CVE-2008-1197 RESERVED CVE-2008-1196 (Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK ...) @@ -811,7 +811,7 @@ CVE-2008-1161 (Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in ...) - xine-lib 1.1.10.1-1 (medium) CVE-2008-1160 (ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra ...) - TODO: check + NOT-FOR-US: ZyXEL ZyWALL 1050 CVE-2008-1159 RESERVED CVE-2008-1158