[Secure-testing-commits] r2828 - data/CVE
Florian Weimer
fw at costa.debian.org
Tue Nov 22 20:20:58 UTC 2005
Author: fw
Date: 2005-11-22 20:20:53 +0000 (Tue, 22 Nov 2005)
New Revision: 2828
Modified:
data/CVE/list
Log:
some CVE names from MITRE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-22 14:23:38 UTC (rev 2827)
+++ data/CVE/list 2005-11-22 20:20:53 UTC (rev 2828)
@@ -1481,7 +1481,7 @@
CVE-2005-XXXX [Pavuk Digest Authentication Buffer Overflow]
- pavuk 0.9.33-1 (bug #264684; high)
NOTE: second hole mentioned in bug report
-CVE-2005-XXXX [HTTP Request smuggling in pound]
+CVE-2005-3751 [HTTP Request smuggling in pound]
- pound 1.9.4-1 (low)
NOTE: see http://www.apsis.ch/pound/pound_list/archive/2005/2005-10/1129827166000/index_html?fullMode=1#1129827166000
CVE-2005-3276 (The sys_get_thread_area function in process.c in Linux 2.6 before ...)
@@ -1918,7 +1918,7 @@
- amanda <unfixed> (bug #226139; low)
CVE-2004-XXXX [Buffer overflow in wdm's login]
- wdm <unfixed> (bug #276218; low)
-CVE-2005-XXXX [Unsafe string landling in ldapdiff]
+CVE-2005-3752 [Unsafe string landling in ldapdiff]
- ldapdiff <not-affected> (The version in Debian doesn't contain the vulnerable code, see #306878)
CVE-2005-XXXX [apt-cache doesn't differentiate sources which share several properties]
- apt <unfixed> (bug #329814; low)
@@ -2136,7 +2136,7 @@
CVE-2005-XXXX [ Chroot escape in vserver kernel patch]
- kernel-patch-vserver 2.1 (bug #329087; bug #329090; medium)
[sarge] - kernel-patch-vserver 1.9.5.4
-CVE-2005-XXXX [Local kernel DoS through incorrect boundary checks in cipher processors]
+CVE-2005-3753 [Local kernel DoS through incorrect boundary checks in cipher processors]
- linux-2.6 2.6.12-7 (low)
CVE-2005-3043 (SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows ...)
NOT-FOR-US: Mall23 eCommerce
More information about the Secure-testing-commits
mailing list