thr3ads.net - Secure testing commits - [Secure-testing-commits] r15255

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2010-Sep-02 21:42 UTC

[Secure-testing-commits] r15255 - data/CVE

Author: jmm-guest
Date: 2010-09-02 21:42:36 +0000 (Thu, 02 Sep 2010)
New Revision: 15255

Modified:
   data/CVE/list
Log:
fix glpng entry


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-09-02 19:30:28 UTC (rev 15254)
+++ data/CVE/list	2010-09-02 21:42:36 UTC (rev 15255)
@@ -31,7 +31,7 @@
 CVE-2010-3187 (Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote
...)
 	NOT-FOR-US: IBM AIX
 CVE-2010-3186 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.13, and
...)
-	TODO: check
+	NOT-FOR-US: WebSphere
 CVE-2010-3185
 	RESERVED
 CVE-2010-3184
@@ -1006,11 +1006,11 @@
 	- moodle <unfixed>
 	TODO: check embedders
 CVE-2010-2794 (The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local
users ...)
-	TODO: check
+	NOT-FOR-US: SPICE plugin for Firefox
 CVE-2010-2793
 	RESERVED
 CVE-2010-2792 (Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for
Firefox ...)
-	TODO: check
+	NOT-FOR-US: SPICE plugin for Firefox
 CVE-2010-2791 (mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on
Unix, ...)
 	- apache2 2.2.10-1 (low)
 CVE-2010-2790 (Multiple cross-site scripting (XSS) vulnerabilities in the
formatQuery ...)
@@ -4332,14 +4332,14 @@
 CVE-2010-1520 (Cross-site scripting (XSS) vulnerability in logout.php in
TaskFreak! ...)
 	NOT-FOR-US: TaskFreak! Original multi user
 CVE-2010-1519 (Multiple integer overflows in glpng.c in glpng 1.45 allow ...)
-	TODO: check
+	- libglpng <unfixed> (low; bug filed)
+	[lenny] - libglpng <no-dsa> (Minor issue)
 CVE-2010-1518 (Array index error in the SetDLInfo method in the GIGABYTE Dldrv2
...)
 	NOT-FOR-US: GIGABYTE Dldrv2 ActiveX control
 CVE-2010-1517 (The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote
attackers ...)
 	NOT-FOR-US: GIGABYTE Dldrv2 ActiveX control
 CVE-2010-1516 (Multiple integer overflows in SWFTools 0.9.1 allow remote
attackers to ...)
-	- libglpng <unfixed> (low; bug filed)
-	[lenny] - libglpng <no-dsa> (Minor issue)
+	NOT-FOR-US: SWFtools (were once packaged)
 CVE-2010-1515 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
 	NOT-FOR-US: TomatoCMS
 CVE-2010-1514 (Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and
earlier ...)
@@ -8406,11 +8406,9 @@
 CVE-2010-0212 (OpenLDAP 2.4.22 allows remote attackers to cause a denial of
service ...)
 	{DSA-2077-1}
 	- openldap 2.4.23-1 
-	NOTE: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
 CVE-2010-0211 (The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22
does not ...)
 	{DSA-2077-1}
 	- openldap 2.4.23-1
-	NOTE: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
 CVE-2010-0210
 	RESERVED
 CVE-2010-0209 (Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76,
and ...)

Secure testing commits - Sep 2010 - r15255 - data/CVE

[Secure-testing-commits] r15255 - data/CVE