Apple Computer Inc. Not Affected

Notified:  September 10, 2004 Updated: September 13, 2004

Status

Not Affected

Vendor Statement

Apple: "cdrecord" and "star" are not included in Mac OS X or Mac OS X Server. The issues reported in this Vulnerability Note do not apply to Mac OS X or Mac OS X Server.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Conectiva Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Cray Inc. Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Debian Affected

Notified:  September 10, 2004 Updated: September 13, 2004

Status

Affected

Vendor Statement

The stable Debian release (woody, 3.0) is not affected by these. The testing/unstable release will be fixed by using the new upstream release.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

EMC Corporation Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Engarde Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

FreeBSD Not Affected

Notified:  September 10, 2004 Updated: September 13, 2004

Status

Not Affected

Vendor Statement

FreeBSD is not affected. These applications are not installed set-user-ID root by the FreeBSD Ports Collection.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Fujitsu Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Hewlett-Packard Company Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Hitachi Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM eServer Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM-zSeries Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Immunix Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Ingrian Networks Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Juniper Networks Not Affected

Notified:  September 10, 2004 Updated: September 14, 2004

Status

Not Affected

Vendor Statement

Juniper Networks products are not susceptible to this vulnerability

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

MandrakeSoft Not Affected

Notified:  September 10, 2004 Updated: September 10, 2004

Status

Not Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

MontaVista Software Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

NEC Corporation Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

NETBSD Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Nokia Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Novell Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

OpenBSD Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Openwall GNU/*/Linux Not Affected

Notified:  September 10, 2004 Updated: September 15, 2004

Status

Not Affected

Vendor Statement

Openwall GNU/*/Linux is not vulnerable. We do not package cdrecord or star.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Redhat Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SCO Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sequent Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SGI Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sony Corporation Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sun Microsystems Inc. Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SuSE Inc. Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

TurboLinux Affected

Notified:  September 10, 2004 Updated: April 04, 2005

Status

Affected

Vendor Statement

This issue was fixed. Please refer this sites: http://www.turbolinux.com/security/2004/TLSA-2004-26.txt http://www.turbolinux.co.jp/security/2004/TLSA-2004-26j.txt

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Unisys Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Wind River Systems Inc. Unknown

Notified:  September 10, 2004 Updated: September 16, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

View all 34 vendors View less vendors