[Secure-testing-commits] r2986 - data/CVE

Fri Dec 9 01:01:29 UTC 2005

Author: jmm-guest
Date: 2005-12-09 01:01:24 +0000 (Fri, 09 Dec 2005)
New Revision: 2986

Modified:
   data/CVE/list
Log:
ethereal finally fixed
curl CVEfied


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2005-12-08 23:58:15 UTC (rev 2985)
+++ data/CVE/list	2005-12-09 01:01:24 UTC (rev 2986)
@@ -119,7 +119,7 @@
 	NOT-FOR-US: Jax Calendar
 CVE-2005-XXXX [Insufficient variable overwrite protection in phpmyadmin]
 	- phpmyadmin <not-affected> (Apparently affects only 2.7.0)
-CVE-2005-XXXX [Off-By-One heap overflow in curl]
+CVE-2005-4077 [Off-By-One heap overflow in curl]
 	- curl 7.15.1-1 (bug #342339; medium) 
 	[woody] - curl <not-affected> (Only curl >= 7.11 is vulnerable)
 CVE-2005-XXXX [Buffer overflows in electricsheep]
@@ -2495,23 +2495,23 @@
 CVE-2005-3250 (Unknown vulnerability in Solaris 10 allows local users to cause a ...)
 	NOT-FOR-US: Solaris
 CVE-2005-3249 (Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3248 (Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3247 (The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to cause ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3246 (Ethereal 0.10.12 and earlier allows remote attackers to cause a denial ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3245 (Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3244 (The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3243 (Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3242 (Ethereal 0.10.12 and earlier allows remote attackers to cause a denial ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3241 (Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3240
 	RESERVED
 CVE-2005-3238 (Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket Option ...)
@@ -2649,7 +2649,7 @@
 	- gtk+2.0 2.6.10-2 (bug #339431; medium)
 	- gdk-pixbuf 0.22.0-11 (bug #339431; bug #339458; medium)
 CVE-2005-3184 (Buffer overflow vulnerability in the unicode_to_bytes in the Service ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3183 (The HTBoundary_put_block function in HTBound.c for W3C libwww ...)
 	- w3c-libwww 5.4.0-11 (bug #334443; low)
 CVE-2005-3182 (Buffer overflow in the HTTP management interface for GFI MailSecurity ...)


