[Secure-testing-team] False positives on daily script

[Julien Goodwin]

For some reason on my fully up to date etch system I get the following
matches in the e-mail, when I click the attached link they all say etch
isn't vulnerable (and I can't see anything obvious wrong with my system).

Thanks,
Julien

(And yes, these are *JUST* the false positives, there's at least twice
as many in Mozilla and kernel vulnerabilities alone)

CVE-2005-3624 The CCITTFaxStream::CCITTFaxStream function in...
  <http://idssi.enyo.de/tracker/CVE-2005-3624>
  - cupsys-common, cupsys-bsd, cupsys-client, libcupsys2-dev,
    libcupsys2, libkpathsea4, tetex-bin

CVE-2005-3625 Xpdf, as used in products such as gpdf, kpdf,...
  <http://idssi.enyo.de/tracker/CVE-2005-3625>
  - cupsys-common, cupsys-bsd, cupsys-client, libcupsys2-dev,
    libcupsys2, libkpathsea4, tetex-bin

CVE-2005-3626 Xpdf, as used in products such as gpdf, kpdf,...
  <http://idssi.enyo.de/tracker/CVE-2005-3626>
  - cupsys-common, cupsys-bsd, cupsys-client, libcupsys2-dev,
    libcupsys2, libkpathsea4, tetex-bin

CVE-2005-3627 Stream.cc in Xpdf, as used in products such as gpdf,...
  <http://idssi.enyo.de/tracker/CVE-2005-3627>
  - cupsys-common, cupsys-bsd, cupsys-client, libcupsys2-dev,
    libcupsys2, libkpathsea4, tetex-bin

CVE-2005-3628 Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap...
  <http://idssi.enyo.de/tracker/CVE-2005-3628>
  - cupsys-common, cupsys-bsd, cupsys-client, libcupsys2-dev,
    libcupsys2, libkpathsea4, tetex-bin

CVE-2006-0301 Heap-based buffer overflow in Splash.cc in xpdf, as...
  <http://idssi.enyo.de/tracker/CVE-2006-0301>
  - kplato, karbon, kexi, kugar, kspread, kthesaurus, kword,
    koffice-data, kivio, kformula, koshell, koffice, kivio-data,
    kpresenter-data, koffice-libs, kword-data, kchart, kpresenter,
    krita-data, krita (medium urgency)

CVE-2006-0410 SQL injection vulnerability in ADOdb before 4.71,...
  <http://idssi.enyo.de/tracker/CVE-2006-0410>
  - cacti

CVE-2006-0806 Multiple cross-site scripting (XSS) vulnerabilities...
  <http://idssi.enyo.de/tracker/CVE-2006-0806>
  - cacti

CVE-2006-1244 Unspecified vulnerability in certain versions of xpdf...
  <http://idssi.enyo.de/tracker/CVE-2006-1244>
  - kplato, karbon, kexi, kugar, kspread, kthesaurus, kword,
    koffice-data, kivio, kformula, koshell, koffice, kivio-data,
    kpresenter-data, koffice-libs, kword-data, kchart, kpresenter,
    krita-data, krita

CVE-2006-3122 The supersede_lease function in memory.c in ISC DHCP...
  <http://idssi.enyo.de/tracker/CVE-2006-3122>
  - dhcp-client

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 250 bytes
Desc: OpenPGP digital signature
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20060905/83185bfa/signature.pgp