thr3ads.net - Secure testing commits - [Secure-testing-commits] r8516

If this information is useful, please help other people find it:
Share via:
nion at alioth.debian.org
2008-Apr-12 15:25 UTC
[Secure-testing-commits] r8516 - data/CVE

Author: nion
Date: 2008-04-12 15:25:40 +0000 (Sat, 12 Apr 2008)
New Revision: 8516

Modified:
   data/CVE/list
Log:
NFUs
add another CVE id to plone3 issues


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-04-12 13:26:55 UTC (rev 8515)
+++ data/CVE/list	2008-04-12 15:25:40 UTC (rev 8516)
@@ -1876,7 +1876,7 @@
 CVE-2008-0885
 	RESERVED
 CVE-2008-0884 (The Replace function in the capp-lspp-config script in the (1)
...)
-	TODO: check
+	NOT-FOR-US: Red Hat Enterprise Linux
 	NOTE: Seems Redhat specific
 CVE-2008-0882 (Double free vulnerability in the process_browse_data function in
CUPS ...)
 	{DSA-1530-1 DTSA-117-1}
@@ -2265,11 +2265,11 @@
 CVE-2008-0707 (HP StorageWorks Library and Tape Tools (LTT) before 4.5 SR1 on
HP-UX ...)
 	NOT-FOR-US: HP-UX
 CVE-2008-0706 (Unspecified vulnerability in the BIOS F.26 and earlier for the
HP ...)
-	TODO: check
+	NOT-FOR-US: BIOS F.26
 CVE-2008-0705
 	RESERVED
 CVE-2008-0704 (Unspecified vulnerability in the SSH server in HP OpenVMS TCP/IP
...)
-	TODO: check
+	NOT-FOR-US: HP OpenVMS
 CVE-2008-0703 (Multiple directory traversal vulnerabilities in sflog! 0.96
allow ...)
 	NOT-FOR-US: sflog!
 CVE-2008-0702 (Multiple heap-based buffer overflows in Titan FTP Server 6.03
and ...)
@@ -2626,7 +2626,7 @@
 CVE-2008-0538 (Multiple SQL injection vulnerabilities in phpIP Management 4.3.2
allow ...)
 	NOT-FOR-US: phpIP Management
 CVE-2008-0537 (Unspecified vulnerability in the Supervisor Engine 32 (Sup32),
...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2008-0536
 	RESERVED
 CVE-2008-0535
@@ -3190,13 +3190,13 @@
 CVE-2008-0314
 	RESERVED
 CVE-2008-0313 (The ActiveDataInfo.LaunchProcess method in the ...)
-	TODO: check
+	NOT-FOR-US: Symantec Norton products
 CVE-2008-0312 (Stack-based buffer overflow in the AutoFix Support Tool ActiveX
...)
-	TODO: check
+	NOT-FOR-US: Symantec Norton products
 CVE-2008-0311 (Stack-based buffer overflow in the PGMWebHandler::parse_request
...)
-	TODO: check
+	NOT-FOR-US: Borland CaliberRM
 CVE-2008-0310 (Directory traversal vulnerability in pkgadd in SCO UnixWare
7.1.4 ...)
-	TODO: check
+	NOT-FOR-US: SCO UnixWare
 CVE-2008-0309 (Stack-based buffer overflow in Symantec Decomposer, as used in
certain ...)
 	NOT-FOR-US: Symantec Decomposer
 CVE-2008-0308 (Symantec Decomposer, as used in certain Symantec antivirus
products ...)
@@ -3444,7 +3444,7 @@
 CVE-2008-0212 (ovtopmd in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01,
and ...)
 	NOT-FOR-US: HP OpenView Network Node Manager
 CVE-2008-0211 (Unspecified vulnerability in the BIOS F.04 through F.11 for the
HP ...)
-	TODO: check
+	NOT-FOR-US: BIOS F.04
 CVE-2008-0210 (Uebimiau Webmail 2.7.10 and 2.7.2 does not protect
authentication ...)
 	NOT-FOR-US: Uebimiau Webmail
 CVE-2008-0209 (Open redirect vulnerability in Forums/login.asp in Snitz Forums
2000 ...)
@@ -3552,7 +3552,7 @@
 CVE-2008-0165
 	RESERVED
 CVE-2008-0164 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Plone ...)
-	TODO: check
+	- plone3 <unfixed> (bug #473571)
 CVE-2008-0163 (Linux kernel 2.6, when using vservers, allows local users to
access ...)
 	{DSA-1494-1}
 	- linux-2.6 <unfixed> (high)
@@ -3768,7 +3768,7 @@
 CVE-2008-0088 (Unspecified vulnerability in Active Directory on Microsoft
Windows ...)
 	NOT-FOR-US: Windows
 CVE-2008-0087 (The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server
2003 SP1 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-0086
 	RESERVED
 CVE-2008-0085
@@ -3776,7 +3776,7 @@
 CVE-2008-0084 (Unspecified vulnerability in the TCP/IP support in Microsoft
Windows ...)
 	NOT-FOR-US: Windows
 CVE-2008-0083 (The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll)
...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-0082
 	RESERVED
 CVE-2008-0081 (Unspecified vulnerability in Microsoft Excel 2000 SP3 through
2003 ...)
@@ -3807,9 +3807,9 @@
 CVE-2008-0071
 	RESERVED
 CVE-2008-0070 (Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote
BETA ...)
-	TODO: check
+	NOT-FOR-US: Orb Networks Orb and Winamp Remote BETA
 CVE-2008-0069 (Stack-based buffer overflow in XnView 1.92 and 1.92.1 allows
...)
-	TODO: check
+	NOT-FOR-US: XnView
 CVE-2008-0068
 	RESERVED
 CVE-2008-0067
@@ -6741,7 +6741,7 @@
 CVE-2007-5662
 	RESERVED
 CVE-2007-5661 (The Macrovision InstallShield InstallScript One-Click Install
(OCI) ...)
-	TODO: check
+	NOT-FOR-US: Macrovision InstallShield
 CVE-2007-5660 (Unspecified vulnerability in the Update Service ActiveX control
in ...)
 	NOT-FOR-US:  MacroVision FLEXnet Connect and InstallShield 2008
 CVE-2007-5659 (Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and
...)
@@ -9846,7 +9846,7 @@
 CVE-2007-4621 (Buffer overflow in crontab in IBM AIX 5.2 allows local users to
gain ...)
 	NOT-FOR-US: IBM AIX
 CVE-2007-4620 (Multiple stack-based buffer overflows in Computer Associates
(CA) ...)
-	TODO: check
+	NOT-FOR-US: CA products
 CVE-2007-4619 (Multiple integer overflows in Free Lossless Audio Codec (FLAC)
libFLAC ...)
 	{DSA-1469-1}
 	- flac 1.2.1-1 (medium)
Secure testing commits - Apr 2008 - r8516 - data/CVE

[Secure-testing-commits] r8516 - data/CVE
