nion at alioth.debian.org
2008-Nov-19 19:15 UTC
[Secure-testing-commits] r10424 - data/CVE
Author: nion Date: 2008-11-19 19:15:58 +0000 (Wed, 19 Nov 2008) New Revision: 10424 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-19 19:00:51 UTC (rev 10423) +++ data/CVE/list 2008-11-19 19:15:58 UTC (rev 10424) @@ -69,7 +69,7 @@ CVE-2008-5099 (Sun Logical Domain Manager (aka LDoms Manager or ldm) 1.0 through ...) NOT-FOR-US: Sun Logical Domain Manager CVE-2008-5098 (Cross-site scripting (XSS) vulnerability in Sun Java System Messaging ...) - TODO: check + NOT-FOR-US: Sun Java System Messaging Serve CVE-2008-5110 (syslog-ng does not call chdir when it calls chroot, which might allow ...) - syslog-ng <unfixed> (unimportant; bug #505791) NOTE: no security flaw by itself, still it should be fixed @@ -85,11 +85,11 @@ CVE-2008-5094 (Heap-based buffer overflow in the NDS Service in Novell eDirectory ...) NOT-FOR-US: eDirectory CVE-2008-5093 (Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack ...) - TODO: check + NOT-FOR-US: eDirectory CVE-2008-5092 (Heap-based buffer overflows in Novell eDirectory HTTP protocol stack ...) - TODO: check + NOT-FOR-US: eDirectory CVE-2008-5091 (Buffer overflow in the LDAP Service in Novell eDirectory before 8.8 ...) - TODO: check + NOT-FOR-US: eDirectory CVE-2008-5090 (Electron Inc. Advanced Electron Forum before 1.0.7 allows remote ...) NOT-FOR-US: Advanced Electron Forum CVE-2008-5089 (Multiple insecure method vulnerabilities in the ...) @@ -97,7 +97,7 @@ CVE-2008-5088 (Multiple SQL injection vulnerabilities in PHPKB Knowledge Base ...) NOT-FOR-US: PHPKB CVE-2008-5087 (SQL injection vulnerability in TYPO3 Another Backend Login ...) - TODO: check + NOT-FOR-US: wrg_anotherbelogin extension for typo3 CVE-2008-5086 RESERVED CVE-2008-5085 @@ -119,19 +119,19 @@ CVE-2008-5077 RESERVED CVE-2008-5075 (Multiple SQL injection vulnerabilities in E-Uploader Pro 1.0 (aka ...) - TODO: check + NOT-FOR-US: E-Uploader Pro CVE-2008-5074 (SQL injection vulnerability in index.php in the Freshlinks 1.0 RC1 ...) - TODO: check + NOT-FOR-US: Freshlinks module for PHP-Fusion CVE-2008-5073 (Heap-based buffer overflow in an ActiveX control in Novell ZENworks ...) NOT-FOR-US: Novell ZENworks ActiveX control CVE-2008-5072 (vsfilter.dll in K-Lite Mega Codec Pack 3.5.7.0 allows remote attackers ...) NOT-FOR-US: K-Lite Mega Codec Pack CVE-2008-5071 (Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel ...) - TODO: check + NOT-FOR-US: Yoxel CVE-2008-5070 (SQL injection vulnerability in Pro Chat Rooms 3.0.3, when ...) - TODO: check + NOT-FOR-US: Pro Chat Rooms CVE-2008-5069 (SQL injection vulnerability in go.php in Panuwat PromoteWeb MySQL, ...) - TODO: check + NOT-FOR-US: Panuwat PromoteWeb MySQL CVE-2008-5068 (Multiple cross-site scripting (XSS) vulnerabilities in Kmita Gallery ...) NOT-FOR-US: Kmita Gallery CVE-2008-5067 (Cross-site scripting (XSS) vulnerability in search.php in Kmita ...) @@ -163,7 +163,7 @@ CVE-2008-5054 (Multiple SQL injection vulnerabilities in Develop It Easy Membership ...) NOT-FOR-US: Develop It Easy Membership System CVE-2008-5053 (PHP remote file inclusion vulnerability in admin.rssreader.php in the ...) - TODO: check + NOT-FOR-US: com_rssreader component for Joomla! CVE-2008-5052 (The AppendAttributeValue function in the JavaScript engine in Mozilla ...) TODO: check CVE-2008-5051 (SQL injection vulnerability in the JooBlog (com_jb2) component 0.1.1 ...)