Author: joeyh
Date: 2007-08-31 21:14:07 +0000 (Fri, 31 Aug 2007)
New Revision: 6457
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-08-31 21:11:32 UTC (rev 6456)
+++ data/CVE/list 2007-08-31 21:14:07 UTC (rev 6457)
@@ -183,7 +183,7 @@
NOT-FOR-US: WordPress multi-user (MU)
CVE-2007-4543 (Cross-site scripting (XSS) vulnerability in enter_bug.cgi in
Bugzilla ...)
- bugzilla <unfixed> (low; bug #440106)
- [sarge] - bugzilla <not-affected> (Vulnerable code not present)
+ [sarge] - bugzilla <not-affected> (Vulnerable code not present)
CVE-2007-4542 (Multiple cross-site scripting (XSS) vulnerabilities in
MapServer ...)
- mapserver 4.10.3-1 (bug #439346)
CVE-2007-4541 (Multiple cross-site scripting (XSS) vulnerabilities in Olate
Download ...)
@@ -823,7 +823,7 @@
CVE-2007-4255 (Buffer overflow in the mSQL extension in PHP 5.2.3 allows ...)
- php5 <unfixed> (unimportant)
- php4 <removed> (unimportant)
- NOTE: Only exploitable by malicious script
+ NOTE: Only exploitable by malicious script
CVE-2007-4254 (Stack-based buffer overflow in a certain ActiveX control in
VDT70.DLL ...)
NOT-FOR-US: Microsoft
CVE-2007-4253 (SQL injection vulnerability in the News module in modules.php
in ...)
@@ -2031,6 +2031,7 @@
CVE-2007-3714 (Directory traversal vulnerability in Ada Image Server (ImgSvr)
0.6.5 ...)
NOT-FOR-US: Ada Image Server
CVE-2007-3713 (Multiple buffer overflows in Konst CenterICQ 4.9.11 through
4.21 allow ...)
+ {DTSA-55-1}
- centericq 4.22.1-2.1 (bug #438511; medium)
- centerim 4.22.1-2.1 (medium)
CVE-2007-3712 (Multiple cross-site scripting (XSS) vulnerabilities in
HiddenChest "is ...)
@@ -3009,7 +3010,7 @@
[etch] - apache <unfixed> (low)
[sarge] - apache <unfixed> (low)
- apache2 2.2.4-2 (low)
- [etch] - apache2 2.2.3-4+etch2
+ [etch] - apache2 2.2.3-4+etch2
[sarge] - apache2 2.0.54-5sarge2 (low)
CVE-2007-3303 (Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module,
allows ...)
- apache2 <unfixed> (unimportant)
@@ -6346,7 +6347,7 @@
CVE-2007-1863 (cache_util.c in the mod_cache module in Apache HTTP Server
(httpd), ...)
- apache2 2.2.4-1 (low)
[sarge] - apache2 2.0.54-5sarge2
- [etch] - apache2 2.2.3-4+etch2
+ [etch] - apache2 2.2.3-4+etch2
TODO: check apache 1
NOTE: see
http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/modules/cache/cache_util.c?view=markup&pathrev=551944
CVE-2007-1862 (The recall_headers function in mod_mem_cache in Apache 2.2.4
does not ...)
@@ -13947,7 +13948,7 @@
CVE-2006-5752 (Cross-site scripting (XSS) vulnerability in mod_status.c in the
...)
- apache2 2.2.4-2 (low)
[sarge] - apache2 2.0.54-5sarge2
- [etch] - apache2 2.2.3-4+etch2
+ [etch] - apache2 2.2.3-4+etch2
- apache <removed> (low)
CVE-2006-5751 (Integer overflow in the get_fdb_entries function in ...)
{DSA-1233}
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
