Author: stef-guest
Date: 2006-11-07 21:31:31 +0100 (Tue, 07 Nov 2006)
New Revision: 4931
Modified:
data/CVE/list
Log:
a few ITPs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-11-07 20:14:37 UTC (rev 4930)
+++ data/CVE/list 2006-11-07 20:31:31 UTC (rev 4931)
@@ -773,7 +773,7 @@
CVE-2006-5403 (Stack-based buffer overflow in an ActiveX control used in
Symantec ...)
NOT-FOR-US: Symantec
CVE-2006-5402 (Multiple PHP remote file inclusion vulnerabilities in
PHPmybibli 3.0.1 ...)
- NOT-FOR-US: PHPmybibli
+ - phpmybibli <itp> (bug #369328)
CVE-2006-5401 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: AROUNDMe
CVE-2006-5400 (PHP remote file inclusion vulnerability in forum/track.php in
...)
@@ -1164,7 +1164,7 @@
CVE-2006-5217 (SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1
allows ...)
NOT-FOR-US: Emek Portal
CVE-2006-5216 (Stack-based buffer overflow in Sergey Lyubka Simple HTTPD
(shttpd) ...)
- NOT-FOR-US: Simple HTTPD (shttpd)
+ - shttpd <itp> (bug #341284)
CVE-2006-5215 (The Xsession script, as used by X Display Manager (xdm) in
NetBSD ...)
- xdm 1:1.0.5-1 (low)
[sarge] - xfree86 <unfixed> (low)
@@ -4987,11 +4987,11 @@
CVE-2006-3534 (Directory traversal vulnerability in Nullsoft SHOUTcast DSP
before ...)
NOT-FOR-US: Nullsoft SHOUTcast DSP
CVE-2006-3533 (Multiple cross-site scripting (XSS) vulnerabilities in Pivot
1.30 RC2 ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3532 (PHP file inclusion vulnerability in includes/edit_new.php in
Pivot ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3531 (includes/editor/insert_image.php in Pivot 1.30 RC2 and earlier
creates ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3530 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: PccookBook Component for Mambo and Joomla
CVE-2003-1304 (EarlyImpact ProductCart 1.0 through 2.0 stores
database/EIPC.mdb under ...)
@@ -7195,8 +7195,7 @@
CVE-2006-2558 (Cross-site scripting (XSS) vulnerability in IpLogger 1.7 and
earlier ...)
NOT-FOR-US: IpLogger
CVE-2006-2557 (PHP remote file inclusion vulnerability in extras/poll/poll.php
in ...)
- NOT-FOR-US: newsportal
- NOTE: RFP #149069 closed after no activity since too long time
+ - newsportal <itp> (bug #149069)
CVE-2006-2556 (Cross-site scripting (XSS) vulnerability in Florian Amrhein
NewsPortal ...)
NOT-FOR-US: newsportal
NOTE: RFP #149069 closed after no activity since too long time
@@ -8190,7 +8189,7 @@
CVE-2006-2118 (JMK's Picture Gallery allows remote attackers to bypass
authentication ...)
NOT-FOR-US: JMK
CVE-2006-2117 (Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows
remote ...)
- NOT-FOR-US: Thyme
+ - thyme <itp> (bug #361599)
CVE-2006-2116 (planetGallery allows remote attackers to gain administrator
privileges ...)
NOT-FOR-US: planetGallery
CVE-2006-2115 (Format string vulnerability in SWS web Server 0.1.7 allows
remote ...)
@@ -29876,7 +29875,7 @@
CVE-2004-1114 (Buffer overflow in the handling of command line arguments in
Skype ...)
NOT-FOR-US: Skype
CVE-2004-1113 (SQL injection vulnerability in SQLgrey Postfix greylisting
service ...)
- NOT-FOR-US: SQLgrey Postfix greylisting serivce
+ - sqlgrey <itp> (bug #389472)
CVE-2004-1112 (The buffer overflow trigger in Cisco Security Agent (CSA)
before 4.0.3 ...)
NOT-FOR-US: Cisco
CVE-2004-1111 (Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S,
12.2(18)SE, ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
