[Secure-testing-commits] r11384 - data/CVE

Fri, 13 Mar 2009 04:19:27 -0700 

Author: nion
Date: 2009-03-13 11:19:18 +0000 (Fri, 13 Mar 2009)
New Revision: 11384

Modified:
   data/CVE/list
Log:
- NFUs
- CVE-2009-0871 doesn't affect asterisk in Debian


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2009-03-12 21:14:12 UTC (rev 11383)
+++ data/CVE/list       2009-03-13 11:19:18 UTC (rev 11384)
@@ -1,31 +1,31 @@
 CVE-2009-0873 (The NFS daemon (aka nfsd) in Sun Solaris 10 and OpenSolaris 
before ...)
-       TODO: check
+       NOT-FOR-US: Solaris
 CVE-2009-0872 (The NFS server in Sun Solaris 10, and OpenSolaris before 
snv_111, does ...)
-       TODO: check
+       NOT-FOR-US: Solaris
 CVE-2009-0871 (The SIP channel driver in Asterisk Open Source 1.4.22, 1.4.23, 
and ...)
-       TODO: check
+       - asterisk <not-affected> (Vulnerable code introduced in 1.4.22)
 CVE-2009-0870 (The NFSv4 Server module in the kernel in Sun Solaris 10, and 
...)
-       TODO: check
+       NOT-FOR-US: Solaris
 CVE-2009-0869 (Buffer overflow in the client in IBM Tivoli Storage Manager 
(TSM) HSM ...)
-       TODO: check
+       NOT-FOR-US: IBM Tivoli Storage Manager
 CVE-2009-0868 (CRLF injection vulnerability in the WebLink template in Fujitsu 
...)
-       TODO: check
+       NOT-FOR-US: Fujitsu Jasmine2000 Enterprise Edition
 CVE-2009-0867 (The HRM-S service in Fujitsu Enhanced Support Facility 3.0 and 
3.0.1 ...)
-       TODO: check
+       NOT-FOR-US: Fujitsu Enhanced Support Facility
 CVE-2009-0866 (pHNews Alpha 1 stores sensitive information under the web root 
with ...)
-       TODO: check
+       NOT-FOR-US: pHNews
 CVE-2009-0865 (Directory traversal vulnerability in the SnapShotToFile method 
in the ...)
-       TODO: check
+       NOT-FOR-US: GeoVision
 CVE-2009-0864 (S-Cms 1.1 Stable allows remote attackers to bypass 
authentication and ...)
-       TODO: check
+       NOT-FOR-US: S-Cms
 CVE-2009-0863 (SQL injection vulnerability in admin/delete_page.php in S-Cms 
1.1 ...)
-       TODO: check
+       NOT-FOR-US: S-Cms
 CVE-2009-0862 (Cross-site scripting (XSS) vulnerability in the ...)
-       TODO: check
+       NOT-FOR-US: TangoCMS
 CVE-2009-0861 (Cross-site scripting (XSS) vulnerability in phpDenora before 
1.2.3 ...)
-       TODO: check
+       NOT-FOR-US: phpDenora
 CVE-2009-0860 (Cross-site scripting (XSS) vulnerability in the web user 
interface in ...)
-       TODO: check
+       NOT-FOR-US: NetMRI
 CVE-2009-0859 (The shm_get_stat function in ipc/shm.c in the shm subsystem in 
the ...)
        TODO: check
 CVE-2009-0858 (The response_addname function in response.c in Daniel J. 
Bernstein ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to