broken links

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@40936 e39458fd-73e7-0310-bf30-c45bca0a0e42

1 files changed, 14 insertions, 14 deletions

diff --git a/data/CVE/2007.list b/data/CVE/2007.list
index 56bf980c70..47dd3b8059 100644
--- a/data/CVE/2007.list
+++ b/data/CVE/2007.list
@@ -5953,7 +5953,7 @@ CVE-2007-4264 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
 	NOT-FOR-US: snif
 CVE-2007-4280 (The Skinny channel driver (chan_skinny) in Asterisk Open Source before ...)
 	- asterisk 1:1.4.10~dfsg-1
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-019.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-019.htm
 	[sarge] - asterisk <not-affected> (not affected according to advisory)
 	[etch] - asterisk <not-affected> (not affected according to advisory)
 CVE-2007-4263 (Unspecified vulnerability in the server side of the Secure Copy (SCP) ...)
@@ -7113,22 +7113,22 @@ CVE-2007-3765 (The STUN implementation in Asterisk 1.4.x before 1.4.8, AsteriskN
 	- asterisk 1:1.4.8~dfsg-1 (bug #433681)
 	[sarge] - asterisk <not-affected> (1.0.x not affected)
 	[etch] - asterisk <not-affected> (1.2.x not affected)
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-017.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-017.htm
 CVE-2007-3764 (The Skinny channel driver (chan_skinny) in Asterisk before 1.2.22 and ...)
 	{DSA-1358-1}
 	- asterisk 1:1.4.8~dfsg-1
 	NOTE: Etch and Sarge affected
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-016.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-016.htm
 CVE-2007-3763 (The IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and ...)
 	{DSA-1358-1}
 	- asterisk 1:1.4.8~dfsg-1
 	NOTE: Etch and Sarge affected
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-015.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-015.htm
 CVE-2007-3762 (Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in ...)
 	{DSA-1358-1}
 	- asterisk 1:1.4.8~dfsg-1 (high)
 	NOTE: Etch and Sarge affected
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-014.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-014.htm
 CVE-2007-3820 (konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to ...)
 	- kdebase 4:3.5.7-3 (bug #433072; low)
 	[sarge] - kdebase <no-dsa> (Minor issue)
@@ -7986,7 +7986,7 @@ CVE-2007-3388 (Multiple format string vulnerabilities in (1) qtextedit.cpp, (2)
 	{DSA-1426-1}
 	- qt-x11-free 3:3.3.7-6
 	- qt4-x11 <not-affected> (This problem is not present in any version of Qt 4)
-	NOTE: http://trolltech.com/company/newsroom/announcements/press.2007-07-27.7503755960
+	NOTE: http://web.archive.org/web/20080206133848/http://trolltech.com:80/company/newsroom/announcements/press.2007-07-27.7503755960
 CVE-2007-3387 (Integer overflow in the StreamPredictor::StreamPredictor function in ...)
 	{DSA-1357-1 DSA-1355-1 DSA-1354-1 DSA-1352-1 DSA-1350-1 DSA-1349-1 DSA-1348-1 DSA-1347-1 DTSA-49-1 DTSA-50-1 DTSA-54-1 DTSA-62-1}
 	- poppler 0.5.4-6.1 (bug #435460)
@@ -9534,7 +9534,7 @@ CVE-2007-2756 (The gdPngReadData function in libgd 2.0.34 allows user-assisted .
 	[sarge] - libgd <no-dsa> (Minor issue)
 	[etch] - libgd2 <no-dsa> (Minor issue)
 	[sarge] - libgd2 <no-dsa> (Minor issue)
-	NOTE: http://bugs.libgd.org/?do=details&task_id=86
+	NOTE: https://web.archive.org/web/20090212193455/http://bugs.libgd.org/?do=details&task_id=86
 CVE-2007-2755 (The PrecisionID Barcode 1.9 ActiveX control in ...)
 	NOT-FOR-US: PrecisionID
 CVE-2007-2754 (Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and ...)
@@ -10150,7 +10150,7 @@ CVE-2007-2488 (The IAX2 channel driver (chan_iax2) in Asterisk before 20070504 d
 	- asterisk 1:1.4.5~dfsg-1 (low)
 	NOTE: no-dsa / unimportant candidate, the opposite side of the telephone line
 	NOTE: could just as well hang-up
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-013.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-013.htm
 CVE-2007-2480 (The _udp_lib_get_port function in net/ipv4/udp.c in Linux kernel ...)
 	- linux-2.6 2.6.22-1 (medium)
 CVE-2007-2479 (Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers ...)
@@ -10472,7 +10472,7 @@ CVE-2007-2379 (The jQuery framework exchanges data using JavaScript Object Notat
 CVE-2007-2378 (The Google Web Toolkit (GWT) framework exchanges data using JavaScript ...)
 	- gwt <removed> (unimportant; bug #563542)
 	NOTE: javascript security guidelines provided to developers to avoid these issues
-	NOTE: http://groups.google.com/group/Google-Web-Toolkit/web/security-for-gwt-applications
+	NOTE: https://developers.google.com/web-toolkit/articles/security_for_gwt_applications 
 CVE-2007-2377 (The Getahead Direct Web Remoting (DWR) framework 1.1.4 exchanges data ...)
 	NOT-FOR-US: Getahead Direct Web Remoting
 CVE-2007-2376 (The Dojo framework exchanges data using JavaScript Object Notation ...)
@@ -10657,13 +10657,13 @@ CVE-2007-2294 (The Manager Interface in Asterisk before 1.2.18 and 1.4.x before
 	{DSA-1358-1}
 	- asterisk 1:1.4.3~dfsg-1 (low)
 	NOTE: Etch and Sarge affected
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-012.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-012.htm
 CVE-2007-2293 (Multiple stack-based buffer overflows in the process_sdp function in ...)
 	- asterisk 1:1.4.3~dfsg-1 (high)
 	[sarge] - asterisk <not-affected> (1.0.x not affected)
 	[etch] - asterisk <not-affected> (1.2.x not affected)
 	[lenny] - asterisk <not-affected> (vulnerable code not present)
-	NOTE: http://ftp.digium.com/pub/asa/ASA-2007-010.html
+	NOTE: https://downloads.avaya.com/elmodocs2/security/ASA-2007-010.htm
 CVE-2007-2292 (CRLF injection vulnerability in the Digest Authentication support for ...)
 	{DSA-1401-1 DSA-1396-1 DSA-1392-1 DTSA-69-1 DTSA-80-1}
 	- iceweasel 2.0.0.8-1 (low)
@@ -11239,7 +11239,7 @@ CVE-2007-2030 (lharc.c in lha does not securely create temporary files, which mi
 CVE-2007-2029 (File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) ...)
 	{DSA-1281-1 DTSA-37-1}
 	- clamav 0.90.2-1 (low; bug #418849)
-	NOTE: closed report: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=459
+	NOTE: closed report: https://bugzilla.clamav.net/show_bug.cgi?id=459
 	NOTE: Commit r3021 looks as if it's just a null pointer dereference.
 CVE-2007-2028 (Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to ...)
 	- freeradius 1.1.6-1 (low)
@@ -14903,7 +14903,7 @@ CVE-2007-0474 (Smb4K before 0.8.0 allow local users, when present on the Smb4K .
 	- smb4k 0.8.1-1 (low)
 	[etch] - smb4k <no-dsa> (Minor issue)
 	NOTE: not fixed in 0.8.0, see
-	NOTE: http://developer.berlios.de/bugs/?func=detailbug&bug_id=9631&group_id=769
+	NOTE: https://web.archive.org/web/20070712072042/http://developer.berlios.de/bugs/?func=detailbug&bug_id=9631&group_id=769
 CVE-2007-0473 (The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 ...)
 	- smb4k 0.8.0-1 (low)
 	[etch] - smb4k <no-dsa> (Minor issue)
@@ -15697,7 +15697,7 @@ CVE-2007-0137 (Cross-site scripting (XSS) vulnerability in SimpleBoxes/Serendipi
 	NOT-FOR-US: Serene Bach
 CVE-2007-0136 (Multiple cross-site scripting (XSS) vulnerabilities in Drupal before ...)
 	- drupal 4.7.5-1
-	NOTE: vendor advisory: http://drupal.org/node/104233, DRUPAL-SA-2007-001
+	NOTE: vendor advisory: http://drupal.org/node/104233 - DRUPAL-SA-2007-001
 CVE-2007-0135 (PHP remote file inclusion vulnerability in inc/init.inc.php in Aratix ...)
 	NOT-FOR-US: Aratix
 CVE-2007-0134 (Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow ...)