kees at alioth.debian.org
2008-Oct-09 19:22 UTC
[Secure-testing-commits] r10050 - data/CVE
Author: kees
Date: 2008-10-09 19:22:17 +0000 (Thu, 09 Oct 2008)
New Revision: 10050
Modified:
data/CVE/list
Log:
NFUs: 13 (are delayed Mitre "RESERVED" entries getting added back in
automatically?)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-10-09 16:11:20 UTC (rev 10049)
+++ data/CVE/list 2008-10-09 19:22:17 UTC (rev 10050)
@@ -1,3 +1,27 @@
+CVE-2008-4502
+ NOT-FOR-US: DataFeedFile PHP Framework API
+CVE-2008-4501
+ NOT-FOR-US: Serv-U
+CVE-2008-4500
+ NOT-FOR-US: Serv-U
+CVE-2008-4499
+ NOT-FOR-US: PHP Web Explorer
+CVE-2008-4498
+ NOT-FOR-US: PHP Autos
+CVE-2008-4497
+ NOT-FOR-US: Built2Go Real Estate Listings
+CVE-2008-4496
+ NOT-FOR-US: PHP Realtor
+CVE-2008-4495
+ NOT-FOR-US: PHP Auto Dealer
+CVE-2008-4494
+ NOT-FOR-US: TorrentTrader Classic
+CVE-2008-4493
+ NOT-FOR-US: PicturePusher ActiveX
+CVE-2008-4492
+ NOT-FOR-US: YourOwnBux
+CVE-2008-4491
+ NOT-FOR-US: Mac OS
CVE-2008-4490
NOT-FOR-US: phpAbook
CVE-2008-4489
@@ -115,10 +139,8 @@
CVE-2008-4423 (SQL injection vulnerability in index.php in Ovidentia 6.6.5
allows ...)
NOT-FOR-US: Ovidentia
CVE-2008-4422
- RESERVED
NOT-FOR-US: ** REJECT **
CVE-2008-4421
- RESERVED
NOT-FOR-US: MetaGauge
CVE-2008-4420
RESERVED
@@ -225,7 +247,6 @@
CVE-2008-4394
RESERVED
CVE-2008-4393
- RESERVED
NOT-FOR-US: VeriSign Kontiki
CVE-2008-4392
RESERVED
@@ -244,7 +265,6 @@
CVE-2008-4385
RESERVED
CVE-2008-4384
- RESERVED
NOT-FOR-US: LPViewer ActiveX
CVE-2008-4383 (Stack-based buffer overflow in the Agranet-Emweb embedded
management ...)
NOT-FOR-US: Agranet-Emweb
@@ -1572,17 +1592,17 @@
CVE-2008-3831
RESERVED
CVE-2008-3830
- RESERVED
+ - condor <itp> (bug #233482)
CVE-2008-3829
- RESERVED
+ - condor <itp> (bug #233482)
CVE-2008-3828
- RESERVED
+ - condor <itp> (bug #233482)
CVE-2008-3827 (Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow
...)
{DSA-1644-1 DTSA-168-1}
- mplayer 1.0~rc2-18 (medium; bug #500683)
NOTE: http://www.ocert.org/advisories/ocert-2008-013.html
CVE-2008-3826
- RESERVED
+ - condor <itp> (bug #233482)
CVE-2008-3825 (pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and
earlier, when ...)
NOT-FOR-US: Different code base than Debian''s libpam-krb5
CVE-2008-3824 (Cross-site scripting (XSS) vulnerability in (1) ...)
@@ -1608,7 +1628,7 @@
CVE-2008-3815
RESERVED
CVE-2008-3814
- RESERVED
+ NOT-FOR-US: Cisco
CVE-2008-3813 (Unspecified vulnerability in Cisco IOS 12.2 and 12.4, when the
L2TP ...)
NOT-FOR-US: Cisco IOS
CVE-2008-3812 (Cisco IOS 12.4, when IOS firewall Application Inspection Control
(AIC) ...)
@@ -2340,7 +2360,6 @@
CVE-2008-3544
RESERVED
CVE-2008-3543
- RESERVED
NOT-FOR-US: HP-UX
CVE-2008-3542 (Unspecified vulnerability in HP Insight Diagnostics before
7.9.1.2402 ...)
NOT-FOR-US: HP Insight Diagnostics
@@ -2605,7 +2624,7 @@
CVE-2008-3425 (Unspecified vulnerability in the Sun Java System Web Server 7.0
plugin ...)
NOT-FOR-US: Sun Java System Web Server
CVE-2008-3424 (Condor before 7.0.4 does not properly handle wildcards in the
...)
- NOT-FOR-US: Condor
+ - condor <itp> (bug #233482)
CVE-2008-3423 (IBM WebSphere Portal 5.1 through 6.1.0.0 allows remote attackers
to ...)
NOT-FOR-US: IBM WebSphere Portal
CVE-2008-3422 (Multiple cross-site scripting (XSS) vulnerabilities in the
ASP.net ...)
@@ -3457,15 +3476,12 @@
CVE-2008-3064 (Unspecified vulnerability in RealNetworks RealPlayer Enterprise,
...)
NOT-FOR-US: RealNetworks RealPlayer Enterprise
CVE-2008-3063
- RESERVED
NOT-FOR-US: V-webmail
CVE-2008-3062
RESERVED
CVE-2008-3061
- RESERVED
NOT-FOR-US: V-webmail
CVE-2008-3060
- RESERVED
NOT-FOR-US: V-webmail
CVE-2008-3059
RESERVED