nion at alioth.debian.org
2008-Dec-03 21:23 UTC
[Secure-testing-commits] r10609 - data/CVE
Author: nion
Date: 2008-12-03 21:23:10 +0000 (Wed, 03 Dec 2008)
New Revision: 10609
Modified:
data/CVE/list
Log:
NFUs
cveified dovecot (CVE-2008-5301)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-12-03 21:14:10 UTC (rev 10608)
+++ data/CVE/list 2008-12-03 21:23:10 UTC (rev 10609)
@@ -1,17 +1,17 @@
CVE-2008-5314 [deep recursion in ClamAV''s JPEG reader]
- clamav 0.94.dfsg.2-1 (medium; bug #507624)
CVE-2008-5311 (SQL injection vulnerability in image.php in NetArt Media Blog
System ...)
- TODO: check
+ NOT-FOR-US: NetArt Media Blog System
CVE-2008-5310 (SQL injection vulnerability in image.php in NetArt Media Car
Portal ...)
- TODO: check
+ NOT-FOR-US: NetArt Media Car Portal
CVE-2008-5309 (SQL injection vulnerability in NetArt Media Real Estate Portal
1.2 ...)
- TODO: check
+ NOT-FOR-US: NetArt Media Real Estate Portal
CVE-2008-5308 (The Simple Forum 3.1d module for LoveCMS 1.6.2 Final does
properly ...)
- TODO: check
+ NOT-FOR-US: LoveCMS
CVE-2008-5307 (SQL injection vulnerability in admin/index.php in PG Roommate
Finder ...)
- TODO: check
+ NOT-FOR-US: PG Roommate Finder Solution
CVE-2008-5306 (SQL injection vulnerability in admin/index.php in PG Real Estate
...)
- TODO: check
+ NOT-FOR-US: PG Real Estate Solution
CVE-2008-5305
RESERVED
CVE-2008-5304
@@ -23,7 +23,7 @@
{DSA-1678-1}
TODO: check
CVE-2008-5301 (Directory traversal vulnerability in the ManageSieve
implementation in ...)
- TODO: check
+ - dovecot 1:1.0.15-2.3 (bug #506031)
CVE-2008-5300 (Linux kernel 2.6.28 allows local users to cause a denial of
service ...)
TODO: check
CVE-2008-5296 (Gallery 1.5.x before 1.5.10 and 1.6 before 1.6-RC3, when ...)
@@ -497,9 +497,6 @@
CVE-2008-5110 (syslog-ng does not call chdir when it calls chroot, which might
allow ...)
- syslog-ng 2.0.9-4.1 (unimportant; bug #505791)
NOTE: no security flaw by itself, still it should be fixed
-CVE-2008-XXXX [dovecot directory traversal]
- - dovecot 1:1.0.15-2.3 (bug #506031)
- NOTE: CVE id requested
CVE-2008-5097 (SQL injection vulnerability in index.php in MyFWB 1.0 allows
remote ...)
NOT-FOR-US: MyFWB
CVE-2008-5096 (Unspecified vulnerability in the TYPO3 File List (file_list)
extension ...)