[Secure-testing-commits] r4234 - data/CVE

Joey Hess Thu, 15 Jun 2006 02:45:24 -0700

Author: joeyh
Date: 2006-06-15 09:14:28 +0000 (Thu, 15 Jun 2006)
New Revision: 4234


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2006-06-15 08:48:12 UTC (rev 4233)
+++ data/CVE/list       2006-06-15 09:14:28 UTC (rev 4234)
@@ -1673,12 +1673,15 @@
 CVE-2006-2275 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to 
cause a ...)
        - linux-2.6 2.6.16-13
 CVE-2006-2274 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to 
cause a ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-13
 CVE-2006-2273 (The InstallProduct routine in the Verisign VUpdater.Install 
(aka ...)
        NOT-FOR-US: Verisign
 CVE-2006-2272 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to 
cause a ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-13
 CVE-2006-2271 (The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 
allows ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-13
 CVE-2005-4798 (Buffer overflow in NFS readlink handling in the Linux Kernel 
2.4 up to ...)
        - linux-2.6 <not-affected>
@@ -1855,6 +1858,7 @@
        RESERVED
 CVE-2006-2195 [horde XSS]
        RESERVED
+       {DSA-1099-1 DSA-1098-1}
        - horde3 3.1.1-3
 CVE-2006-2194
        RESERVED
@@ -2626,6 +2630,7 @@
 CVE-2006-1865 (Beagle before 0.2.5 can produce certain insecure command lines 
to ...)
        - beagle 0.2.6-2 (bug #365371; medium)
 CVE-2006-1864 (Directory traversal vulnerability in smbfs in Linux 2.6.16 and 
earlier ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-13
 CVE-2006-1863 (Directory traversal vulnerability in CIFS in Linux 2.6.16 and 
earlier ...)
        - linux-2.6 2.6.16-10
@@ -2639,8 +2644,10 @@
 CVE-2006-1859 (Memory leak in __setlease in fs/locks.c in Linux kernel before 
...)
        - linux-2.6 <unfixed>
 CVE-2006-1858 (SCTP in Linux kernel before 2.6.16.17 allows remote attackers 
to cause ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-14
 CVE-2006-1857 (Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows 
remote ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-14
 CVE-2006-1856 (Certain modifications to the Linux kernel 2.6.16 and earlier do 
not ...)
        TODO: check
@@ -3576,8 +3583,10 @@
 CVE-2006-1526 (Buffer overflow in the X render (Xrender) extension in X.org X 
server ...)
        - xorg-server 1:1.0.2-8
 CVE-2006-1525 (ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local 
users ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-9
 CVE-2006-1524 (madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not 
follow ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-8
 CVE-2006-1523 (The __group_complete_signal function in the RCU signal handling 
...)
        - linux-2.6 2.6.16-7
@@ -3955,6 +3964,7 @@
 CVE-2006-1369 (Cross-site scripting (XSS) vulnerability in Invision Power 
Board (IPB) ...)
        NOT-FOR-US: Invision Power Board
 CVE-2006-1368 (Buffer overflow in the USB Gadget RNDIS implementation in the 
Linux ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-1
 CVE-2006-1367 (The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly 
the ...)
        NOT-FOR-US: Motorola hardware
@@ -4006,6 +4016,7 @@
 CVE-2006-1344 (Cross-site scripting (XSS) vulnerability in VeriSign haydn.exe, 
as ...)
        NOT-FOR-US: VeriSign haydn.exe
 CVE-2006-1343 (net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 
2.6, ...)
+       {DSA-1097-1}
        - linux-2.6 <unfixed>
 CVE-2006-1342 (net/ipv4/af_inet.c in Linux kernel 2.4 does not clear ...)
        - linux-2.6 <unfixed>
@@ -4241,6 +4252,7 @@
 CVE-2006-1243 (Directory traversal vulnerability in install05.php in Simple 
PHP Blog ...)
        NOT-FOR-US: Simple PHP Blog 
 CVE-2006-1242 (The ip_push_pending_frames function in Linux 2.4.x and 2.6.x 
before ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-4
 CVE-2006-1241 (Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and 
(3) ...)
        - firebird2 <not-affected> (Not setuid in Debian)
@@ -4650,6 +4662,7 @@
        {DSA-1040-1}
        - gdm 2.14.4-1
 CVE-2006-1056 (The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when 
running ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-9
        - kfreebsd-source-5.4 5.4-17
        - xen-3.0 3.0.2+hg9656-1
@@ -5355,8 +5368,10 @@
 CVE-2006-0743 (Format string vulnerability in LocalSyslogAppender in Apache 
log4net ...)
        NOT-FOR-US: Log4Net
 CVE-2006-0742 (The die_if_kernel function in arch/ia64/kernel/unaligned.c in 
Linux ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.15-8
 CVE-2006-0741 (Linux kernel before 2.6.15.5, when running on Intel processors, 
allows ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.15-8
 CVE-2006-0740
        RESERVED
@@ -7525,8 +7540,10 @@
 CVE-2006-0040 (GNOME Evolution 2.4.2.1 and earlier allows remote attackers to 
cause a ...)
        - evolution <unfixed>
 CVE-2006-0039 (Race condition in the do_add_counters function in netfilter for 
Linux ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-14
 CVE-2006-0038 (Integer overflow in the do_replace function in netfilter for 
Linux ...)
+       {DSA-1097-1}
        - linux-2.6 2.6.16-1
 CVE-2006-0037 (ip_nat_pptp in the PPTP NAT helper 
(netfilter/ip_nat_helper_pptp.c) in ...)
        - linux-2.6 2.6.15-3


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r4234 - data/CVE

Reply via email to