stef-guest at alioth.debian.org
2008-Sep-22 07:36 UTC
[Secure-testing-commits] r9861 - data/CVE
Author: stef-guest
Date: 2008-09-22 07:36:52 +0000 (Mon, 22 Sep 2008)
New Revision: 9861
Modified:
data/CVE/list
Log:
another kernel issue, some NFUs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-09-22 07:20:39 UTC (rev 9860)
+++ data/CVE/list 2008-09-22 07:36:52 UTC (rev 9861)
@@ -427,7 +427,7 @@
CVE-2007-6717 (Buffer overflow in tftp in bos.net.tcp.client in IBM AIX 5.2.0
and ...)
NOT-FOR-US: IBM AIX
CVE-2007-6716 (fs/direct-io.c in the dio subsystem in the Linux kernel before
2.6.23 ...)
- TODO: check
+ - linux-2.6 2.6.23-1
CVE-2008-3962 (The from_format function in ssmtp.c in ssmtp 2.61 and 2.62, in
certain ...)
- ssmtp <unfixed> (low; bug #498366)
CVE-2008-3963 (MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6
does ...)
@@ -1001,7 +1001,7 @@
CVE-2008-3698 (Unspecified vulnerability in the OpenProcess function in VMware
...)
- vmware-package <not-affected> (Only vulnerable on windows hosted
systems)
CVE-2008-3697 (An unspecified ISAPI extension in VMware Server before 1.0.7
build ...)
- TODO: check
+ NOT-FOR-US: VMware Server on Windows
CVE-2008-3696 (Unspecified vulnerability in a certain ActiveX control in VMware
...)
- vmware-package <not-affected> (Only vulnerable on windows hosted
systems)
CVE-2008-3695 (Unspecified vulnerability in a certain ActiveX control in VMware
...)
@@ -2738,17 +2738,17 @@
{DSA-1615-1 DSA-1614-1}
- iceweasel 3.0.1-1 (low)
CVE-2008-2932 (Heap-based buffer overflow in Red Hat adminutil 1.1.6 allows
remote ...)
- TODO: check
+ NOT-FOR-US: Red Hat adminutil
CVE-2008-2931 (The do_change_type function in fs/namespace.c in the Linux
kernel ...)
{DSA-1630-1}
- linux-2.6 2.6.22
NOTE: ee6f958291e2a768fd727e7a67badfff0b67711a
CVE-2008-2930 (Red Hat Directory Server 7.1 before SP7, Red Hat Directory
Server 8, ...)
- TODO: check
+ NOT-FOR-US: Red Hat Directory Server / Fedora Directory Server
CVE-2008-2929 (Multiple cross-site scripting (XSS) vulnerabilities in the
adminutil ...)
- TODO: check
+ NOT-FOR-US: Red Hat Directory Server / Fedora Directory Server
CVE-2008-2928 (Multiple buffer overflows in the adminutil library in CGI
applications ...)
- TODO: check
+ NOT-FOR-US: Red Hat Directory Server / Fedora Directory Server
CVE-2008-2926 (The kmxfw.sys driver in CA Host-Based Intrusion Prevention
System ...)
NOT-FOR-US: r8 (Host-Based Intrusion Prevention System)
CVE-2008-2925 (SQL injection vulnerability in Webmatic before 2.8 allows remote
...)