[Secure-testing-commits] r3834 - data/CVE

Thu, 20 Apr 2006 02:34:11 -0700 

Author: jmm-guest
Date: 2006-04-20 09:33:29 +0000 (Thu, 20 Apr 2006)
New Revision: 3834

Modified:
   data/CVE/list
Log:
marking backup-manager dupes


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2006-04-19 19:13:35 UTC (rev 3833)
+++ data/CVE/list       2006-04-20 09:33:29 UTC (rev 3834)
@@ -2341,8 +2341,7 @@
 CVE-2006-0840 (manage_user_page.php in Mantis 1.00rc4 and earlier does not 
properly ...)
        - mantis <unfixed>
 CVE-2006-0839 (The frag3 preprocessor in Sourcefire Snort 2.4.3 does not 
properly ...)
-       TODO: check
-       NOTE: frag3 is only in 2.4, currently there is 2.3.3 in sid
+       - snort <not-affected> (frag3 is only in 2.4, currently there is 2.3.3 
in sid)
 CVE-2006-0838 (IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 stores cleartext 
...)
        NOT-FOR-US: Tivoli
 CVE-2006-0837 (IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 has 
world-readable ...)
@@ -6685,7 +6684,8 @@
        - cscope <unfixed> (bug #340177; medium)
        NOTE: Sarge and Woody are affected
 CVE-2005-XXXX [unsafe file permissions in vpnc]
-       - vpnc <unfixed> (bug #340105; medium)
+       - vpnc 0.3.3+SVN20051028-3 (bug #340105; unimportant)
+       NOTE: Only an example file
 CVE-2006-0017
        RESERVED
 CVE-2006-0016
@@ -11910,11 +11910,9 @@
 CVE-2005-2213 (Buffer overflow in the mms_interp_header function in mms.c in 
MMS ...)
        NOT-FOR-US: MMS Ripper
 CVE-2005-2212 (Backup Manager 0.5.8a creates an archive repository with world 
...)
-       - backup-manager 0.5.8-2 (bug #308897; low)
-       NOTE: maybe a duplicate of CVE-2005-1856, author contacted
+       NOTE: duplicate of CVE-2005-1856
 CVE-2005-2211 (Backup Manager 0.5.8a creates temporary files insecurely, which 
allows ...)
-       - backup-manager 0.5.8-2 (low)
-       NOTE: maybe a duplicate of CVE-2005-1855, author contacted 
+       NOTE: duplicate of CVE-2005-1855
 CVE-2005-2210 (Stack-based buffer overflow in Internet Download Manager 4.05 
allows ...)
        NOT-FOR-US: Internet Download Manager
 CVE-2005-2209 (Capturix ScanShare 1.06 build 50 stores sensitive information 
such as ...)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to