jamie-guest at alioth.debian.org
2009-Jan-05 22:56 UTC
[Secure-testing-commits] r10863 - data/CVE
Author: jamie-guest
Date: 2009-01-05 22:56:33 +0000 (Mon, 05 Jan 2009)
New Revision: 10863
Modified:
data/CVE/list
Log:
NOT-FOR-US updates
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-01-05 21:27:30 UTC (rev 10862)
+++ data/CVE/list 2009-01-05 22:56:33 UTC (rev 10863)
@@ -1,3 +1,11 @@
+CVE-2008-5841
+ NOT-FOR-US: iGaming
+CVE-2008-5840
+ NOT-FOR-US: PHP iCalendar
+CVE-2008-5839
+ NOT-FOR-US: Foxmail
+CVE-2008-5838
+ NOT-FOR-US: E-Php Scripts E-Shop Shopping Cart
CVE-2008-5837
RESERVED
CVE-2008-5836
@@ -29,7 +37,7 @@
CVE-2008-5822 (Memory leak in Libxul, as used in Mozilla Firefox 3.0.5 and
other ...)
TODO: check
CVE-2008-5821 (Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2
on ...)
- TODO: check
+ NOT-FOR-US: Webkit on Windows
CVE-2008-5820 (SQL injection vulnerability in eDNews_view.php in eDreamers
eDNews 2 ...)
NOT-FOR-US: eDreamers eDNews
CVE-2008-5819 (Directory traversal vulnerability in eDNews_archive.php in
eDreamers ...)
@@ -203,7 +211,7 @@
CVE-2008-5737 (SQL injection vulnerability in index.php in Nodstrum MySQL
Calendar ...)
NOT-FOR-US: Nodstrum MySQL Calendar
CVE-2008-5736 (Multiple unspecified vulnerabilities in FreeBSD 6 before
6.4-STABLE, ...)
- TODO: check
+ NOT-FOR-US: FreeBSD
CVE-2008-5735 (Stack-based buffer overflow in skin.c in CoolPlayer 2.17 through
2.19 ...)
NOT-FOR-US: CoolPlayer
CVE-2008-5734 (Cross-site scripting (XSS) vulnerability in WebMail Pro in
IceWarp ...)
@@ -3583,11 +3591,11 @@
{DSA-1670-1}
- enscript 1.6.4-13 (bug #506261)
CVE-2008-4305 (Static code injection vulnerability in installation/setup.php in
...)
- TODO: check
+ NOT-FOR-US: phpCollab
CVE-2008-4304 (general/login.php in phpCollab 2.5 rc3 and earlier allows remote
...)
- TODO: check
+ NOT-FOR-US: phpCollab
CVE-2008-4303 (Multiple SQL injection vulnerabilities in phpCollab 2.5 rc3,
2.4, and ...)
- TODO: check
+ NOT-FOR-US: phpCollab
CVE-2008-4302 (fs/splice.c in the splice subsystem in the Linux kernel before
...)
{DSA-1653-1}
- linux-2.6 2.6.22-4 (low)
@@ -8115,9 +8123,9 @@
CVE-2008-2436 (Multiple heap-based buffer overflows in the IppCreateServerRef
...)
NOT-FOR-US: Novell iPrint Client
CVE-2008-2435 (Use-after-free vulnerability in the Trend Micro HouseCall
ActiveX ...)
- TODO: check
+ NOT-FOR-US: ActiveX
CVE-2008-2434 (The Trend Micro HouseCall ActiveX control 6.51.0.1028 and
6.6.0.1278 ...)
- TODO: check
+ NOT-FOR-US: ActiveX
CVE-2008-2433 (The web management console in Trend Micro OfficeScan 7.0 through
8.0, ...)
NOT-FOR-US: Trend Micro OfficeScan
CVE-2008-2432 (Insecure method vulnerability in the GetFileList method in an
...)