[Secure-testing-commits] r3064 - in data: . CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Thu Dec 15 23:01:28 UTC 2005 

Author: jmm-guest
Date: 2005-12-15 23:01:23 +0000 (Thu, 15 Dec 2005)
New Revision: 3064

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
claim


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-12-15 22:20:59 UTC (rev 3063)
+++ data/CVE/list	2005-12-15 23:01:23 UTC (rev 3064)
@@ -1,3 +1,4 @@
+begin claimed by jmm
 CVE-2005-4266 (WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a ...)
 	TODO: check
 CVE-2005-4265 (Alt-N MDaemon and WorldClient 8.1.3 allows remote attackers to cause a ...)
@@ -66,6 +67,7 @@
 	TODO: check
 CVE-2005-4232 (SQL injection vulnerability in index.php in Jamit Job Board 2.4.1 and ...)
 	TODO: check
+end claimed by jmm
 CVE-2005-4231 (Cross-site scripting (XSS) vulnerability in Link Up Gold 2.5 and ...)
 	NOT-FOR-US: Link Up Gold
 CVE-2005-4230 (SQL injection vulnerability in poll.php in Link Up Gold 2.5 and ...)
@@ -869,7 +871,7 @@
 CVE-2005-3904 (Unspecified vulnerability in Java Management Extensions (JMX) in Java ...)
 	NOT-FOR-US: Sun Java
 CVE-2005-3903 (Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows ...)
-	TODO: check
+	NOT-FOR-US: SCO Unixware
 CVE-2005-3902 (Cross-site scripting (XSS) vulnerability in gui/errordocs/index.php in ...)
 	NOT-FOR-US: Virtual Hosting Control System 
 CVE-2005-3901 (Macromedia Flash Communication Server MX 1.0 and 1.5 does not ...)
@@ -1179,6 +1181,7 @@
 CVE-2004-2573 (PHP remote file inclusion vulnerability in tables_update.inc.php in ...)
 	- phpgroupware 0.9.14.007
 CVE-2005-3848 (Memory leak in the icmp_push_reply function in Linux 2.6 before ...)
+	- kernel-source-2.4.27 2.4.27-12
 	[sarge] - kernel-source-2.6.8 2.6.8-16sarge2
 CVE-2005-3847 (The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up ...)
 	[sarge] - kernel-source-2.6.8 2.6.8-16sarge2 
@@ -1562,7 +1565,7 @@
 CVE-2005-3662 (Off-by-one buffer overflow in pnmtopng before 2.39, when using the ...)
 	- netpbm-free <unfixed> (medium)
 CVE-2005-3661 (Dell TrueMobile 2300 Wireless Broadband Router running firmware ...)
-	TODO: check
+	NOT-FOR-US: Dell hardware issue
 CVE-2005-3660
 	RESERVED
 CVE-2005-3659
@@ -5232,8 +5235,7 @@
 	- kernel-source-2.6.8 2.6.8-16sarge2
 CVE-2004-2302 (Race condition in the sysfs_read_file and sysfs_write_file functions ...)
 	{DSA-922-1 DTSA-16-1}
-	- linux-2.6 <not-affected> (Fixed before upload into archive)
-	TODO: Check, when this was fixed upstream
+	- linux-2.6 <not-affected> (Fixed before upload into archive; 2.6.10)
 	- kernel-source-2.4.27 <not-affected>
 CVE-2005-XXXX [Buffer overflow in Description parsing]
 	- bidwatcher <removed> (bug #319489; high)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2005-12-15 22:20:59 UTC (rev 3063)
+++ data/embedded-code-copies	2005-12-15 23:01:23 UTC (rev 3064)
@@ -117,8 +117,10 @@
 ffmpeg
 xine-lib
 xvidcap (currently in NEW)
-kino
+kino(?)
 gst-ffmpeg
+xmovie (currently in NEW)
+gst-ffmpeg
 
 mad MPEG decoding lib:
 mad

More information about the Secure-testing-commits mailing list