Author: micah
Date: 2006-03-27 16:30:14 +0000 (Mon, 27 Mar 2006)
New Revision: 3700
Modified:
data/CVE/list
data/ID_pending
Log:
Requested some IDs for XXX issues, removed cruft
not even worth reporting
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-03-27 09:23:24 UTC (rev 3699)
+++ data/CVE/list 2006-03-27 16:30:14 UTC (rev 3700)
@@ -1001,9 +1001,6 @@
CVE-2006-1320 (util.c in rssh 2.3.0 in Debian GNU/Linux does not use braces to
make a ...)
- rssh 2.3.0-1.1 (bug #346322; low)
[sarge] - rssh <not-affected> (Problem has been introduced in 2.3.0)
-CVE-2006-XXXX [buffer overflow in netcat example]
- - netcat 1.10-31 (bug #352369; unimportant)
- NOTE: Only an example, not in the binary package
CVE-2006-1321 (Cross-site scripting (XSS) vulnerability in webcheck before
1.9.6 ...)
- webcheck 1.9.6
CVE-2006-0937 (U.N.U. Mailgust 1.9 allows remote attackers to obtain sensitive
...)
@@ -1662,13 +1659,8 @@
- libpam-mysql <unfixed> (bug #353589; high)
CVE-2005-4712 (CRLF injection vulnerability in process_signup.php in PHP
Handicapper ...)
NOT-FOR-US: Handicapper
-CVE-2006-XXXX [imagemagick's display(1) deletes arbitrary files]
- - imagemagick 6:6.2.4.5-0.7 (bug #352575; medium)
- - graphicsmagick <not-affected> (Vulnerable code not present)
- [woody] - imagemagick <not-affected> (Vulnerable code not present)
- [sarge] - imagemagick <not-affected> (Vulnerable code not present)
CVE-2006-XXXX [dpkg-sig: insecure temp file bug]
- - dpkg-sig <unfixed> (bug #352723; low)
+ - dpkg-sig 0.13 (bug #352723; low)
[sarge] - dpkg-sig <no-dsa> (Only affected in debug mode)
CVE-2006-XXXX [Wordpress XSS]
- wordpress 2.0.1-1 (bug #328909)
@@ -3275,8 +3267,6 @@
NOT-FOR-US: Juniper
CVE-2005-4586 (Multiple SQL injection vulnerabilities in PHPSurveyor before
0.991 ...)
NOT-FOR-US: PHPSurveyor
-CVE-2005-XXXX [phpbb2 bbcode xss ie-only fixed in 2.0.19]
- - phpbb2 <not-affected> (Fixed through a more complete fix in previous
2.0.13+1-6sarge1 update)
CVE-2005-XXXX [snort: DoS in verbose mode]
- snort 2.3.3-2 (bug #328134; low)
[woody] - snort <no-dsa> (Only exploitable in obscure setups not used
in production environments, see #328134)
@@ -4030,10 +4020,6 @@
NOT-FOR-US: YaCy
CVE-2003-1289 (The iBCS2 system call translator for statfs in NetBSD 1.5
through ...)
NOT-FOR-US: NetBSD
-CVE-2005-XXXX [SQL Injection in server_privileges.php]
- - phpmyadmin <unfixed> (bug #343858; unimportant)
- NOTE: Attack only works for authenticated users and after all "SQL
injection" is
- NOTE: phpmyadmin's primary use case :-)
CVE-2005-XXXX [rageirc IRC daemon always allows login with empty password]
- rageircd <unfixed> (bug #343543; medium)
CVE-2005-4266 (WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a
...)
@@ -5403,8 +5389,6 @@
CVE-2005-XXXX [Unspecified new Real/Helix createProcess() issue, no details
yet]
- helix-player <unfixed> (unknown)
NOTE: http://service.real.com/help/faq/security/security111605.html
-CVE-2005-XXXX [maradns risk mitigation against AES side channel attacks by
Shamir et al.]
- - maradns 1.0.35-1 (unimportant)
CVE-2005-3731 (Unspecified vulnerability in yaSSL before 1.0.6 has unknown
impact and ...)
NOT-FOR-US: yaSSL
CVE-2005-3730 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
@@ -6686,18 +6670,9 @@
CVE-2005-XXXX [ntop format string vulnerability]
- ntop <unfixed> (bug #335996; unimportant)
NOTE: Not exploitable
-CVE-2005-XXXX [Firefox IFRAME DoS]
- - mozilla-firefox <unfixed> (bug #336171; low)
- - firefox 1.4.99+1.5rc3.dfsg-2 (bug #336171; low)
- NOTE: Only a DoS attack, see
http://bugzilla.mozilla.org/show_bug.cgi?id=303433
CVE-2005-3341 (DHIS tools DNS package (dhis-tools-dns) before 5.0 allows local
users ...)
{DSA-928-1}
- dhis-tools-dns 5.0-5
-CVE-2005-XXXX [libxaw6: passwords visible in widgets]
- NOTE: fixed in libxaw7
- - xorg-x11 <unfixed> (bug #172890; low)
- - xfree86 <removed>
- [sarge] - xfree86 <no-dsa>
CVE-2005-3339 (Mantis before 0.19.3 caches the User ID longer than necessary,
which ...)
{DSA-905-1}
- mantis 0.19.3-0.1 (bug #330682; unknown)
@@ -7272,9 +7247,6 @@
CVE-2005-3179 (drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in
sysfs ...)
- linux-2.6 2.6.13+2.6.14-rc4-0experimental.1 (medium)
- kernel-source-2.4.27 <not-affected>
-CVE-2005-XXXX [Minor DoS vulnerability in msg id parsing of spampd]
- - spampd 2.30-1 (bug #332259; low)
- [sarge] - spampd <no-dsa> (Only exploitable to let single messages pass
through)
CVE-2005-3178 (Buffer overflow in xloadimage 4.1 and earlier, and xli, might
allow ...)
{DSA-859-1 DSA-858-1}
- xloadimage 4.1-15 (bug #332524; medium)
@@ -7462,15 +7434,9 @@
CVE-2005-XXXX [tar's rmt command may have undesired side effects]
- tar <unfixed> (bug #290435; low)
[sarge] - tar <no-dsa> (Hardly exploitable)
-CVE-2005-XXXX [clamav's VERSION command does not return the currently loaded
version]
- NOTE: no exploit vector, just bad info
- - clamav <unfixed> (bug #323803; unimportant)
CVE-2005-XXXX [smbmount doesn't honor gid/uid with kernel 2.4]
- kernel-source-2.4.27 <unfixed> (bug #310982; low)
NOTE: probably already fixed in testing, wrote for confirmation
-CVE-2004-XXXX [Minor dialog box origin spoofing vulnerability in Konqueror]
- - kdebase 4:3.3.1-1 (bug #278002; low)
- TODO: According to
http://secunia.com/secunia_research/2004-10/advisory/ Firefox and Mozilla aff.
as well
CVE-2003-XXXX [Incomplete reporting of failed logins in login]
- login 1:4.0.3-36 (bug #192849)
CVE-2004-XXXX [slapd debconfage writes password to world readable file under
certain circumstances]
Modified: data/ID_pending
===================================================================
--- data/ID_pending 2006-03-27 09:23:24 UTC (rev 3699)
+++ data/ID_pending 2006-03-27 16:30:14 UTC (rev 3700)
@@ -1,25 +1,22 @@
-CVE-2006-XXXX [buffer overflow in netcat example]
- - netcat 1.10-30 (bug #352369; unimportant)
- NOTE: Only an example, not in the binary package
- NOTE: Already fixed, not worth getting a CVE for?
CVE-2006-XXXX [imagemagick: array index overflow in DisplayImageCommand]
- imagemagick 6:6.2.4.5-0.6 (bug #345595)
-CVE-2006-XXXX [imagemagick's display(1) deletes arbitrary files]
- - imagemagick 6:6.2.4.5-0.7 (bug #352575; medium)
- - graphicsmagick <not-affected> (Vulnerable code not present)
- [woody] - imagemagick <not-affected> (Vulnerable code not present)
- [sarge] - imagemagick <not-affected> (Vulnerable code not present)
+ NOTE: Requested by Micah March 26, 2006
CVE-2006-XXXX [dpkg-sig: insecure temp file bug]
- - dpkg-sig <unfixed> (bug #352723; medium)
+ - dpkg-sig <unfixed> (bug #352723; low)
+ NOTE: not going to request CVE for this, its really quite minor
CVE-2006-XXXX [Wordpress XSS]
- wordpress 2.0.1-1 (bug #328909)
+ NOTE: sent query to maintainer about this issue - Micah
CVE-2006-XXXX [pioneers meta-server DoS]
- pioneers 0.9.55-1 (bug #351986; medium)
[sarge] - gnocatan <not-affected> (Not exploitable in Sarge per
maintainer)
+ NOTE: Requested by Micah March 26, 2006
CVE-2006-XXXX [kphone creates world-readable config file with passwords]
- kphone <unfixed> (bug #337830; low)
+ NOTE: Requested by Micah March 26, 2006
CVE-2006-XXXX [knowledgetree information disclosure]
- knowledgetree <unfixed> (bug #348306; medium)
+ NOTE: Requested by Micah March 26, 2006
CVE-2006-XXXX [php5 response splitting]
- php5 5.1.2-1 (bug #347894)
- php4 <not-affected> (vulnerable code was introduced in PHP5)
@@ -30,8 +27,6 @@
- b2evolution 0.9.1b-4 (bug #344000)
CVE-2005-XXXX [xshisen follows symlinks for shared gid games files]
- xshisen 1.51-1-1.2 (bug #291613)
-CVE-2005-XXXX [phpbb2 bbcode xss ie-only fixed in 2.0.19]
- - phpbb2 <not-affected> (Fixed through a more complete fix in previous
2.0.13+1-6sarge1 update)
CVE-2005-XXXX [snort: DoS in verbose mode]
- snort 2.3.3-2 (bug #328134; low)
[woody] - snort <no-dsa> (Only exploitable in obscure setups not used
in production environments, see #328134)
@@ -39,10 +34,6 @@
CVE-2005-XXXX [Insecure tempfile in libjpeg6b's exifautotran]
- libjpeg6b 6b-11 (bug #340079; low)
[woody] - libjpeg6b <not-affected> (Does not include exifautotran)
-CVE-2005-XXXX [SQL Injection in server_privileges.php]
- - phpmyadmin <unfixed> (bug #343858; unimportant)
- NOTE: Attack only works for authenticated users and after all "SQL
injection" is
- NOTE: phpmyadmin's primary use case :-)
CVE-2005-XXXX [rageirc IRC daemon always allows login with empty password]
- rageircd <unfixed> (bug #343543; medium)
CVE-2003-XXXX [Insecure tempfile in x-face-el]
@@ -51,8 +42,6 @@
CVE-2005-XXXX [Unspecified new Real/Helix createProcess() issue, no details
yet]
- helix-player <unfixed> (unknown)
NOTE: http://service.real.com/help/faq/security/security111605.html
-CVE-2005-XXXX [maradns risk mitigation against AES side channel attacks by
Shamir et al.]
- - maradns 1.0.35-1 (unimportant)
CVE-2005-XXXX [unsafe file permissions in vpnc]
- vpnc <unfixed> (bug #340105; medium)
CVE-2005-XXXX [user logout in drupal has no effect]
@@ -65,14 +54,6 @@
CVE-2005-XXXX [ntop format string vulnerability]
- ntop <unfixed> (bug #335996; unimportant)
NOTE: Not exploitable
-CVE-2005-XXXX [Firefox IFRAME DoS]
- - mozilla-firefox <unfixed> (bug #336171; low)
- - firefox 1.4.99+1.5rc3.dfsg-2 (bug #336171; low)
- NOTE: Only a DoS attack, see
http://bugzilla.mozilla.org/show_bug.cgi?id=303433
-CVE-2005-XXXX [libxaw6: passwords visible in widgets]
- NOTE: fixed in libxaw7
- - xorg-x11 <unfixed> (bug #172890; low)
- - xfree86 <removed>
CVE-2005-XXXX [kernel: Signedness problems in net/core/filter]
- linux-2.6 2.6.12-2
[sarge] - kernel-source-2.4.27 <not-affected>
@@ -93,9 +74,6 @@
- flexbackup <unfixed> (bug #334350; low)
CVE-2005-XXXX [xscreensaver does not maintain screen locks during upgrade]
- xscreensaver 4.23-2 (bug #334193; low)
-CVE-2005-XXXX [Minor DoS vulnerability in msg id parsing of spampd]
- - spampd 2.30-1 (bug #332259; low)
- [sarge] - spampd <no-dsa> (Only exploitable to let single messages pass
through)
CVE-2005-XXXX [Minor local DoS as libldap]
- openldap <unfixed> (bug #253838; low)
TODO: Check, whether openldap2.2 is affected as well
@@ -107,15 +85,9 @@
[woody] - coreutils <no-dsa> (Minor issue, hardly exploitable)
CVE-2005-XXXX [tar's rmt command may have undesired side effects]
- tar <unfixed> (bug #290435; low)
-CVE-2005-XXXX [clamav's VERSION command does not return the currently loaded
version]
- NOTE: no exploit vector, just bad info
- - clamav <unfixed> (bug #323803; unimportant)
CVE-2005-XXXX [smbmount doesn't honor gid/uid with kernel 2.4]
- kernel-source-2.4.27 <unfixed> (bug #310982; low)
NOTE: probably already fixed in testing, wrote for confirmation
-CVE-2004-XXXX [Minor dialog box origin spoofing vulnerability in Konqueror]
- - kdebase 4:3.3.1-1 (bug #278002; low)
- TODO: According to
http://secunia.com/secunia_research/2004-10/advisory/ Firefox and Mozilla aff.
as well
CVE-2003-XXXX [Incomplete reporting of failed logins in login]
- login 1:4.0.3-36 (bug #192849)
CVE-2004-XXXX [slapd debconfage writes password to world readable file under
certain circumstances]
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
