jmm-guest at alioth.debian.org
2009-Apr-02 21:34 UTC
[Secure-testing-commits] r11544 - data/CVE
Author: jmm-guest Date: 2009-04-02 21:34:17 +0000 (Thu, 02 Apr 2009) New Revision: 11544 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-04-02 21:22:11 UTC (rev 11543) +++ data/CVE/list 2009-04-02 21:34:17 UTC (rev 11544) @@ -1,29 +1,29 @@ CVE-2009-1221 RESERVED CVE-2009-1220 (Cross-site scripting (XSS) vulnerability in +webvpn+/index.html in ...) - TODO: check + NOT-FOR-US: Cisco Adaptive Security Appliances CVE-2009-1219 (Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun ...) - TODO: check + NOT-FOR-US: Sun Calendar Express Web Server CVE-2009-1218 (Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar ...) - TODO: check + NOT-FOR-US: Sun Calendar Express Web Server CVE-2009-1217 (Off-by-one error in the GpFont::SetData function in gdiplus.dll in ...) - TODO: check + NOT-FOR-US: Windows GDI+ CVE-2009-1216 (Multiple unspecified vulnerabilities in (1) unlzh.c and (2) unpack.c ...) TODO: check CVE-2008-6579 (Nortel Communication Server 1000 4.50.x allows remote attackers to ...) - TODO: check + NOT-FOR-US: Nortel Communication Server CVE-2008-6578 (Multiple unspecified vulnerabilities in Nortel Communication Server ...) - TODO: check + NOT-FOR-US: Nortel Communication Server CVE-2008-6577 (Nortel MG1000S, Signaling Server, and Call Server on the ...) - TODO: check + NOT-FOR-US: Nortel appliances CVE-2008-6576 (Unspecified vulnerability in the "session limitation technique" in the ...) - TODO: check + NOT-FOR-US: Nortel Communication Server CVE-2008-6575 (Unspecified vulnerability in the SIP server in SIP Enablement Services ...) - TODO: check + NOT-FOR-US: Avaya Communication Manager CVE-2008-6574 (Unspecified vulnerability in SIP Enablement Services (SES) in Avaya ...) - TODO: check + NOT-FOR-US: Avaya Communication Manager CVE-2008-6573 (Multiple SQL injection vulnerabilities in Avaya SIP Enablement ...) - TODO: check + NOT-FOR-US: Avaya Communication Manager CVE-2009-1215 (Race condition in GNU screen 4.0.3 allows local users to create or ...) - screen <unfixed> (bug #521123) [etch] - screen <not-affected> (etch version predates #433338) @@ -54,7 +54,6 @@ NOT-FOR-US: Cafe Access Analyzer CGI Professional CVE-2009-1205 REJECTED - NOT-FOR-US: EAI WebViewer3D ActiveX control CVE-2009-1204 (Cross-site scripting (XSS) vulnerability in TikiWiki (Tiki) ...) NOT-FOR-US: TikiWiki CVE-2009-1203 @@ -6813,7 +6812,7 @@ CVE-2008-4826 RESERVED CVE-2008-4825 (Multiple buffer overflows in UltraISO 9.3.1.2633, and possibly other ...) - TODO: check + NOT-FOR-US: UltraISO CVE-2008-4824 (Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before ...) NOT-FOR-US: Adobe Flash Player CVE-2008-4823 (Cross-site scripting (XSS) vulnerability in Adobe Flash Player ...) @@ -9113,7 +9112,7 @@ [etch] - flashplugin-nonfree <no-dsa> (Contrib not supported) NOTE: automatically downloads latest update from adobe which is 9.0.124.0 currently CVE-2008-3871 (Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and ...) - TODO: check + NOT-FOR-US: UltraISO CVE-2008-3870 RESERVED CVE-2008-3869 @@ -24735,7 +24734,7 @@ - tar 1.18-1 (low; bug #441444) - cpio 2.9-5 (low; bug #449222) CVE-2007-4475 (Stack-based buffer overflow in EAI WebViewer3D ActiveX control ...) - TODO: check + NOT-FOR-US: EAI WebViewer3D ActiveX control CVE-2007-4474 (Multiple stack-based buffer overflows in the IBM Lotus Domino Web ...) NOT-FOR-US: IBM Lotus Domino Web Access CVE-2007-4473 (Gesytec Easylon OPC Server before 2.3.44 does not properly validate ...)