Secure testing commits - Sep 2009 - r12818 - data/CVE

Author: derevko-guest
Date: 2009-09-15 11:31:21 +0000 (Tue, 15 Sep 2009)
New Revision: 12818

Modified:
   data/CVE/list
Log:
- NFU
- CVE-2008-7220 already fixed
- CVE-2007-6731, CVE-2007-6732: Multiple buffer overflows in xmp


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-09-15 08:19:50 UTC (rev 12817)
+++ data/CVE/list	2009-09-15 11:31:21 UTC (rev 12818)
@@ -3,17 +3,17 @@
 CVE-2009-3165
 	RESERVED
 CVE-2008-7220 (Unspecified vulnerability in Prototype JavaScript framework ...)
-	TODO: check
+	- prototypejs 1.6.0.2-1
 CVE-2008-7219 (Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag
H3 2.1 ...)
 	TODO: check
 CVE-2008-7218 (Unspecified vulnerability in the Horde API in Horde 3.1 before
3.1.6 ...)
 	TODO: check
 CVE-2008-7217 (Microsoft Office 2008 for Mac, when running on Macintosh systems
that ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office
 CVE-2007-6732 (Multiple buffer overflows in the dtt_load function in ...)
-	TODO: check
+	- xmp 2.6.1-1 (medium; bug #546730)
 CVE-2007-6731 (Extended Module Player (XMP) 2.5.1 and earlier allow remote
attackers ...)
-	TODO: check
+	- xmp 2.6.1-1 (medium; bug #546730)
 CVE-2009-3182 (Unrestricted file upload vulnerability in ...)
 	NOT-FOR-US: Anantasoft Gazelle CMS
 CVE-2009-3181 (Directory traversal vulnerability in Anantasoft Gazelle CMS 1.0
allows ...)