Author: stef-guest
Date: 2006-05-02 17:41:55 +0000 (Tue, 02 May 2006)
New Revision: 3907
Modified:
data/CVE/list
Log:
ethereal fixed
gcc fixed
egroupware dropped phpldapadmin
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-05-02 16:52:58 UTC (rev 3906)
+++ data/CVE/list 2006-05-02 17:41:55 UTC (rev 3907)
@@ -255,7 +255,7 @@
- dnsmasq 2.30-1 (medium)
CVE-2006-2016 (Multiple cross-site scripting (XSS) vulnerabilities in
phpLDAPadmin ...)
- phpldapadmin <unfixed> (bug #365313; low)
- - egroupware <unfixed> (bug #365314; low)
+ - egroupware 1.2-1.dfsg-1 (bug #365314; low; phpldapadmin dropped)
CVE-2006-2015 (Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows
remote ...)
NOT-FOR-US: SL_site
CVE-2006-2014 (Directory traversal vulnerability in gallerie.php in SL_site
1.0 ...)
@@ -422,23 +422,23 @@
CVE-2006-1941 (Neon Responder 5.4 for LANsurveyor allows remote attackers to
cause a ...)
NOT-FOR-US: Neon Responder
CVE-2006-1940 (Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14
allows ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1939 (Multiple unspecified vulnerabilities in Ethereal 0.9.x up to
0.10.14 ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1938 (Multiple unspecified vulnerabilities in Ethereal 0.8.x up to
0.10.14 ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1937 (Multiple unspecified vulnerabilities in Ethereal 0.10.x up to
0.10.14 ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1936 (Buffer overflow in Ethereal 0.8.5 up to 0.10.14 allows remote
...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1935 (Buffer overflow in Ethereal 0.9.15 up to 0.10.14 allows remote
...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1934 (Multiple buffer overflows in Ethereal 0.10.x up to 0.10.14
allow ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1933 (Multiple unspecified vulnerabilities in Ethereal 0.10.x up to
0.10.14 ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1932 (Off-by-one error in the OID printing routine in Ethereal 0.10.x
up to ...)
- - ethereal <unfixed> (bug #364758; medium)
+ - ethereal 0.99.0-1 (bug #364758; medium)
CVE-2006-1931 (The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking
sockets, ...)
NOTE: the redhat bugzilla entry says this is fixed in 1.8.3
NOTE: the fix is definitely not in 1.8.2-7sarge2
@@ -510,7 +510,7 @@
CVE-2006-1903 (Multiple cross-site scripting (XSS) vulnerabilities in UserLand
Manila ...)
NOT-FOR-US: UserLand Manila
CVE-2006-1902 (fold_binary in fold-const.c in GNU Compiler Collection (gcc)
4.1 ...)
- - gcc-4.1 (bug #356896; low)
+ - gcc-4.1 4.1.0-2 (bug #356896; low)
CVE-2006-1901 (Mozilla Camino 1.0 and earlier allow remote attackers to cause
a ...)
NOT-FOR-US: Mozilla Camino
CVE-2006-1900 (Multiple buffer overflows in World Wide Web Consortium (W3C)
Amaya ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
