jamie-guest at alioth.debian.org
2008-Dec-02 23:00 UTC
[Secure-testing-commits] r10587 - data/CVE
Author: jamie-guest Date: 2008-12-02 23:00:28 +0000 (Tue, 02 Dec 2008) New Revision: 10587 Modified: data/CVE/list Log: Added several NFUs to data/CVE/list Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-02 22:49:00 UTC (rev 10586) +++ data/CVE/list 2008-12-02 23:00:28 UTC (rev 10587) @@ -321,7 +321,7 @@ CVE-2008-5163 (Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 ...) NOT-FOR-US: The Rat CMS CVE-2008-5162 (The arc4random function in the kernel in FreeBSD 6.3 through 7.1 does ...) - TODO: check + NOT-FOR-US: FreeBSD CVE-2008-5161 (Error handling in the SSH protocol in (1) SSH Tectia Client and Server ...) - openssh <unfixed> (low; bug #506115) [etch] - openssh <no-dsa> (minor issue) @@ -1518,7 +1518,7 @@ CVE-2008-4637 (Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 ...) NOT-FOR-US: cpCommerce CVE-2008-4636 (yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux ...) - TODO: check + NOT-FOR-US: SUSE Linux and Novell Linux (yast2-backup) CVE-2008-4635 (Unspecified vulnerability in Hisanaga Electric Co, Ltd. hisa_cart 1.29 ...) NOT-FOR-US: XOOPS module CVE-2008-4634 (Cross-site scripting (XSS) vulnerability in Movable Type 4 through ...) @@ -2287,12 +2287,12 @@ CVE-2008-4316 RESERVED CVE-2008-4315 (tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux ...) - TODO: check + NOT-FOR-US: OpenPegasus CVE-2008-4314 (smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to ...) - samba 2:3.2.5-1 [etch] - samba <not-affected> (Vulnerable code not present) CVE-2008-4313 (A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 ...) - TODO: check + NOT-FOR-US: OpenPegasus CVE-2008-4312 RESERVED CVE-2008-4311 @@ -4042,7 +4042,7 @@ CVE-2008-3645 (Heap-based buffer overflow in the local IPC component in the ...) NOT-FOR-US: Mac OS CVE-2008-3644 (Apple Safari before 3.2 does not properly prevent caching of form data ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2008-3643 (Unspecified vulnerability in Finder in Mac OS X 10.5.5 allows ...) NOT-FOR-US: Mac OS CVE-2008-3642 (Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5 allows ...) @@ -4091,7 +4091,7 @@ CVE-2008-3624 (Heap-based buffer overflow in Apple QuickTime before 7.5.5 allows ...) NOT-FOR-US: Apple QuickTime CVE-2008-3623 (Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 ...) - TODO: check + NOT-FOR-US: Apple Safari on Windows CVE-2008-3622 (Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac ...) NOT-FOR-US: Mac OS X CVE-2008-3621 (VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 ...)