Author: micah
Date: 2006-06-24 22:25:41 +0000 (Sat, 24 Jun 2006)
New Revision: 4298
Modified:
data/CVE/list
Log:
Added gdm issue, and some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-06-24 22:05:14 UTC (rev 4297)
+++ data/CVE/list 2006-06-24 22:25:41 UTC (rev 4298)
@@ -11,7 +11,7 @@
CVE-2006-3128 (choose_file.php in easy-CMS 0.1.2, when mod_mime is installed,
does ...)
NOT-FOR-US: easy-CMS
CVE-2006-3127 (Memory leak in Network Security Services (NSS) 3.11, as used in
Sun ...)
- TODO: check
+ NOT-FOR-US: Sun Java Enterprise System
CVE-2006-3126
RESERVED
CVE-2006-3125
@@ -260,7 +260,7 @@
CVE-2002-2214 (The php_if_imap_mime_header_decode function in the IMAP
functionality ...)
TODO: check
CVE-1999-1589 (Unspecified vulnerability in crontab in IBM AIX 3.2 allows
local users ...)
- TODO: check
+ NOT-FOR-US: IBM AIX
CVE-2006-XXXX [snarf: crash on invalid response to the PASV command]
- snarf 7.0-5
CVE-2006-3010 (Multiple SQL injection vulnerabilities in Open Business
Management ...)
@@ -1079,7 +1079,7 @@
CVE-2006-2657
RESERVED
CVE-2006-2655 (The build process for ypserv in FreeBSD 5.3 up to 6.1
accidentally ...)
- TODO: check
+ NOT-FOR-US: FreeBSD
CVE-2006-2654 (Directory traversal vulnerability in smbfs smbfs on FreeBSD
4.10 up to ...)
NOT-FOR-US: FreeBSD-specific (see CVE-2006-1864 for Linux-specific CVE)
CVE-2006-2653 (Cross-site scripting (XSS) vulnerability in login_error.shtml
for ...)
@@ -1548,7 +1548,7 @@
CVE-2006-2453 (Multiple unspecified format string vulnerabilities in Dia have
...)
- dia 0.95.0-4 (bug #368202; medium)
CVE-2006-2452 (GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face
browser" feature ...)
- TODO: check
+ - gdm <unfixed> (bug #375281; medium)
CVE-2006-2451
RESERVED
CVE-2006-2450
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
