atomo64-guest at alioth.debian.org
2009-Mar-23 03:34 UTC
[Secure-testing-commits] r11461 - data/CVE
Author: atomo64-guest Date: 2009-03-23 03:34:51 +0000 (Mon, 23 Mar 2009) New Revision: 11461 Modified: data/CVE/list Log: NFUs and ejabberd issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-23 02:52:55 UTC (rev 11460) +++ data/CVE/list 2009-03-23 03:34:51 UTC (rev 11461) @@ -1,9 +1,9 @@ CVE-2009-1040 (Buffer overflow in WinAsm Studio 5.1.5.0 allows user-assisted remote ...) - TODO: check + NOT-FOR-US: WinAsm CVE-2009-1039 (Buffer overflow in CDex 1.70b2 allows remote attackers to execute ...) TODO: check CVE-2009-1038 (Multiple SQL injection vulnerabilities in YAP Blog 1.1.1 allow remote ...) - TODO: check + NOT-FOR-US: YAP Blog CVE-2009-1037 (Unspecified vulnerability in the Send by e-mail module in the ...) TODO: check CVE-2009-1036 (Cross-site request forgery (CSRF) vulnerability in the Plus 1 module ...) @@ -13,13 +13,13 @@ CVE-2009-1034 (SQL injection vulnerability in the Tasklist module 5.x-1.x before ...) TODO: check CVE-2009-1033 (SQL injection vulnerability in misc.php in DeluxeBB 1.3 and earlier ...) - TODO: check + NOT-FOR-US: DeluxeBB CVE-2009-1032 (SQL injection vulnerability in gallery_list.php in YABSoft Advanced ...) - TODO: check + NOT-FOR-US: YABSoft Advanced Image Gallery CVE-2009-1031 (Directory traversal vulnerability in the FTP server in Rhino Software ...) - TODO: check + NOT-FOR-US: FTP Rhino Software Serv-U CVE-2009-1030 (Cross-site scripting (XSS) vulnerability in the choose_primary_blog ...) - TODO: check + - wordpress-mu <itp> (bug #399756) CVE-2009-1029 (Stack-based buffer overflow in POP Peeper 3.4.0.0 and earlier allows ...) TODO: check CVE-2009-1028 (Stack-based buffer overflow in ediSys eZip Wizard 3.0 allows remote ...) @@ -171,7 +171,7 @@ CVE-2009-0967 (The FTP server in Serv-U 7.4.0.1 allows remote authenticated users to ...) TODO: check CVE-2009-0966 (PHP remote file inclusion vulnerability in cross.php in YABSoft Mega ...) - TODO: check + NOT-FOR-US: YABSoft Mega File Hosting CVE-2009-0965 (SQL injection vulnerability in functions/browse.php in Ganesha Digital ...) TODO: check CVE-2009-0964 (UserView_list.php in PHPRunner 4.2, and possibly earlier, stores ...) @@ -258,7 +258,8 @@ [lenny] - linux-2.6 <not-affected> (Vulnerability was introduced in 2.6.27-rc9) - linux-2.6.24 <not-affected> (Vulnerability was introduced in 2.6.27-rc9) CVE-2009-0934 (Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 ...) - TODO: check + - ejabberd <unfixed> (bug #520852) + TODO: check version in old/stable CVE-2009-0933 (Cross-site scripting (XSS) vulnerability in the administrative ...) TODO: check CVE-2009-0932 (Directory traversal vulnerability in framework/Image/Image.php in ...)