diff options
author | Michael Gilbert <michael.s.gilbert@gmail.com> | 2009-09-15 02:26:58 +0000 |
---|---|---|
committer | Michael Gilbert <michael.s.gilbert@gmail.com> | 2009-09-15 02:26:58 +0000 |
commit | 5bd54e49040065bff2f91044b54e63def291760e (patch) | |
tree | 6d2139c3d6e2e15877b220660898529edc28c212 /data/CVE/2004.list | |
parent | 3936509f88fc70f23924ba8278c3de51b1cd14ef (diff) |
some embedded code copy updates
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@12814 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE/2004.list')
-rw-r--r-- | data/CVE/2004.list | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/data/CVE/2004.list b/data/CVE/2004.list index 772773d84b..9097109974 100644 --- a/data/CVE/2004.list +++ b/data/CVE/2004.list @@ -2662,9 +2662,11 @@ CVE-2004-1477 (Cross-site scripting (XSS) vulnerability in the Management Consol NOT-FOR-US: JRun CVE-2004-1476 (Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib ...) - xine-lib 1-rc6 + - vlc <not-affected> (affected part of xine-lib code copy not present) - libcdio 0.69 CVE-2004-1475 (Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 ...) - xine-lib 1-rc6 + - vlc <not-affected> (affected part of xine-lib code copy not present) CVE-2004-1474 (Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running ...) NOT-FOR-US: Symantec Enterprise Firewall/VPN Appliances CVE-2004-1473 (Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running ...) @@ -2706,6 +2708,7 @@ CVE-2004-1456 (filediff in CVStrac allows remote attackers to execute arbitrary - cvstrac 1.1.4-1 CVE-2004-1455 (Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and ...) - xine-lib 1-rc5-1.1 + - vlc <not-affected> (vulnerable component of xine-lib code copy not present) CVE-2004-1454 (Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First (OSPF) ...) NOT-FOR-US: Cisco CVE-2004-1453 (GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, ...) @@ -3041,6 +3044,7 @@ CVE-2004-1301 (Buffer overflow in the book_format_sql function in format.c for . NOT-FOR-US: xlreader CVE-2004-1300 (Buffer overflow in the open_aiff_file function in demux_aiff.c for ...) - xine-lib 1-rc8-1 + - vlc <not-affected> (vulnerable component of xine-lib code copy not present) CVE-2004-1299 (Buffer overflow in the get_attr function in html.c for vilistextum ...) NOT-FOR-US: vilistextum CVE-2004-1298 (Buffer overflow in the parse function in vb2c.c for vb2c 0.02 allows ...) @@ -3294,8 +3298,10 @@ CVE-2004-1189 (The add_to_history function in svr_principal.c in libkadm5srv for - krb5 1.3.6-1 CVE-2004-1188 (The pnm_get_chunk function in xine 0.99.2 and earlier, and other ...) - xine-lib 1-rc8-1 + - mplayer <not-affected> (fixed in 1.0-pre5 which precedes the version included in etch) CVE-2004-1187 (Heap-based buffer overflow in the pnm_get_chunk function for xine ...) - xine-lib 1-rc8-1 + - mplayer <not-affected> (fixed in 1.0-pre5 which precedes the version included in etch) CVE-2004-1186 (Multiple buffer overflows in enscript 1.6.3 allow remote attackers or ...) {DSA-654-1} - enscript 1.6.4-6 @@ -5179,6 +5185,7 @@ CVE-2004-0434 (k5admind (kadmind) for Heimdal allows remote attackers to execute CVE-2004-0433 (Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) ...) - mplayer 1.0~pre6a-1 - xine-lib 1-rc4 + TODO: check vlc (a problem in the xine-lib rtsp code copy. this was likely fixed a long time ago, but i can't find a link to the relevant code anymore to compare to) CVE-2004-0432 (ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL ...) - proftpd 1.2.9-4 CVE-2004-0431 (Integer overflow in Apple QuickTime (QuickTime.qts) before 6.5.1 ...) |