Apple Computer Inc. Not Affected

Notified:  September 17, 2004 Updated: January 31, 2005

Status

Not Affected

Vendor Statement

Mac OS X and Mac OS X Server do not contain the software described in this vulnerability note.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

BSDI Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Conectiva Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Cray Inc. Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Debian Affected

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Affected

Vendor Statement

The stable Debian distribution (3.0 alias woody) is vulnerable to several of these problems. The matrix below explains which version fixes which problem. | Gtk+2.0 gdk-pixbuf VU#825374 CAN-2004-0753 | not vuln 0.17.0-2woody2 VU#729894 CAN-2004-0782 | 2.0.2-5woody2 0.17.0-2woody2 VU#369358 CAN-2004-0783 | 2.0.2-5woody2 not vuln VU#577654 CAN-2004-0788 | 2.0.2-5woody2 0.17.0-2woody2 For the unstable distribution (sid) these problems have been fixed in version 0.22.0-7 of gdk-pixbuf, and will be fixed soon in Gtk+2.0.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

EMC Corporation Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Engarde Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

FreeBSD Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Fujitsu Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Hewlett-Packard Company Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Hitachi Not Affected

Notified:  September 17, 2004 Updated: September 28, 2004

Status

Not Affected

Vendor Statement

HI-UX/WE2 is NOT Vulnerable to this issue.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM eServer Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

IBM-zSeries Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Immunix Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Ingrian Networks Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Juniper Networks Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

MandrakeSoft Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

MontaVista Software Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

NEC Corporation Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

NETBSD Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Nokia Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Novell Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

OpenBSD Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Openwall GNU/*/Linux Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Red Hat Inc. Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SCO Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sequent Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SGI Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sony Corporation Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Sun Microsystems Inc. Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

SuSE Inc. Affected

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Affected

Vendor Statement

updated gtk2, gdk-pixbuf packages were already released. These packages do not contain fixes for the remote denial-of-service bug referenced by VU#825374 and CAN-2004-0753. This bug will be fixed as soon as possible. Our customers can update their systems by using the YaST Online Update (YOU) tool or installing the RPM file directly from http://www.suse.de/en/private/download/updates/

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

TurboLinux Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Unisys Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Wind River Systems Inc. Unknown

Notified:  September 17, 2004 Updated: September 20, 2004

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

View all 35 vendors View less vendors