[Secure-testing-commits] r2982 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Thu Dec 8 10:43:25 UTC 2005
Author: jmm-guest
Date: 2005-12-08 10:43:16 +0000 (Thu, 08 Dec 2005)
New Revision: 2982
Modified:
data/CVE/list
Log:
upstream confirmation for latest phpmyadmin issue
update on older kernel issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-12-08 09:14:22 UTC (rev 2981)
+++ data/CVE/list 2005-12-08 10:43:16 UTC (rev 2982)
@@ -119,8 +119,6 @@
NOT-FOR-US: Jax Calendar
CVE-2005-XXXX [Insufficient variable overwrite protection in phpmyadmin]
- phpmyadmin <not-affected> (Apparently affects only 2.7.0)
- NOTE: http://www.hardened-php.net/advisory_252005.110.html
- TODO: Please double-check this
CVE-2005-XXXX [Off-By-One heap overflow in curl]
- curl 7.15.1-1 (bug #342339; medium)
[woody] - curl <not-affected> (Only curl >= 7.11 is vulnerable)
@@ -17559,7 +17557,8 @@
CVE-2003-0986
RESERVED
CVE-2003-0984 (Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do ...)
- NOTE: fixed in 2.4.24-rc1
+ - linux-2.6 <not-affected> (Fixed before upload into archive; 2.6.2)
+ - kernel-source-2.4.27 <not-affected> (Fixed before upload into archive; 2.4.24-rc1)
CVE-2003-0983 (Cisco Unity on IBM servers is shipped with default settings that ...)
NOT-FOR-US: Cisco Unity on IBM servers
CVE-2003-0982 (Buffer overflow in the authentication module for Cisco ACNS 4.x before ...)
More information about the Secure-testing-commits
mailing list