[Secure-testing-commits] r2747 - data/CVE

Joey Hess joeyh at costa.debian.org
Mon Nov 14 21:14:24 UTC 2005 

Author: joeyh
Date: 2005-11-14 21:14:19 +0000 (Mon, 14 Nov 2005)
New Revision: 2747

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-14 20:59:21 UTC (rev 2746)
+++ data/CVE/list	2005-11-14 21:14:19 UTC (rev 2747)
@@ -400,6 +400,7 @@
 CVE-2005-3326 (SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) ...)
 	NOT-FOR-US: MyBB
 CVE-2005-3325 (SQL injection vulnerability in base_qry_main.php in Basic Analysis and ...)
+	{DSA-893-1}
 	- acidbase 1.2.1-1 (bug #335998; bug #336788; medium)
 	NOTE: the fix from 1.2-2 did not address the problem fully
 	- acidlab 0.9.6b20-13
@@ -943,6 +944,7 @@
 	{DSA-855-1}
 	- weex 2.6.1-6sarge1 (bug #332424; medium)
 CVE-2005-3149 (Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly ...)
+	{DSA-895-1}
 	- uim 1:0.4.7-2 (bug #331620; medium)
 CVE-2005-3148 (StoreBackup before 1.19 in SUSE Linux does not properly set the uid ...)
 	- storebackup 1.19-1 (bug #332434)
@@ -1457,6 +1459,7 @@
 	[sarge] - kernel-source-2.4.27 2.4.27-10sarge2
 	TODO: According to the mail by dannf this is fixed in sarge2, please revert if incorrect
 CVE-2005-2972 (Multiple stack-based buffer overflows in the RTF import feature in ...)
+	{DSA-894-1}
 	- abiword 2.4.1-1 (bug #333740; medium)
 CVE-2005-2971 (Heap-based buffer overflow in the KWord RTF importer for KOffice 1.2.0 ...)
 	{DSA-872-1}
@@ -1482,6 +1485,7 @@
 	{DSA-857-1}
 	- graphviz 2.2.1-1sarge1 (bug #336985; low) 
 CVE-2005-2964 (Stack-based buffer overflow in AbiWord before 2.2.10 allows attackers ...)
+	{DSA-894-1}
 	- abiword 2.2.10-1 (bug #329839; medium)
 CVE-2005-2963 (The mod_auth_shadow module 1.0 through 1.5 and 2.0 for Apache with ...)
 	{DSA-844-1}
@@ -20020,6 +20024,7 @@
 	{DSA-137}
 	- mm 1.3.1-1
 CVE-2002-0653 (Off-by-one buffer overflow in rewrite_command hook for mod_ssl Apache ...)
+	{DSA-135}
 	- libapache-mod-ssl 2.8.9-2
 STOP: this is approximatly the release of woody, so we can stop here
 CVE-2002-0651 (Buffer overflow in the DNS resolver code used in libc, glibc, and ...)

More information about the Secure-testing-commits mailing list