nion at alioth.debian.org
2008-Oct-07 11:41 UTC
[Secure-testing-commits] r10026 - data/CVE
Author: nion Date: 2008-10-07 11:41:25 +0000 (Tue, 07 Oct 2008) New Revision: 10026 Modified: data/CVE/list Log: CVE-2008-4445 fixed in linux-2.6 2.6.26-5 NFU new linux-2.6 issue (CVE-2008-4410) Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-07 10:51:24 UTC (rev 10025) +++ data/CVE/list 2008-10-07 11:41:25 UTC (rev 10026) @@ -49,7 +49,7 @@ CVE-2008-4446 (Cross-site scripting (XSS) vulnerability in Nucleus EUC-JP 3.31 SP1 ...) NOT-FOR-US: Nucleus EUC-JP CVE-2008-4445 (The sctp_auth_ep_set_hmacs function in net/sctp/auth.c in the Stream ...) - TODO: check + - linux-2.6 2.6.26-5 CVE-2008-4444 RESERVED CVE-2008-4443 @@ -69,7 +69,7 @@ CVE-2008-4435 (Multiple cross-site scripting (XSS) vulnerabilities in the RMSOFT ...) NOT-FOR-US: RMSOFT Downloads Plus CVE-2008-4434 (Stack-based buffer overflow in (1) uTorrent 1.7.7 build 8179 and ...) - TODO: check + NOT-FOR-US: uTorrent/Bittorrent CVE-2008-4433 (SQL injection vulnerability in search.php in the RMSOFT MiniShop ...) NOT-FOR-US: RMSOFT MiniShop (xoops) CVE-2008-4432 (Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT ...) @@ -120,7 +120,8 @@ CVE-2008-4411 RESERVED CVE-2008-4410 (The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the ...) - TODO: check + - linux-2.6 <unfixed> + TODO: report bug CVE-2008-4409 (libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities ...) TODO: check CVE-2008-4406 (A certain Debian patch to the run scripts for sabre (aka xsabre) ...)