[Secure-testing-commits] r2567 - data/CVE

Florian Weimer fw at costa.debian.org
Tue Oct 25 13:53:23 UTC 2005 

Author: fw
Date: 2005-10-25 13:53:18 +0000 (Tue, 25 Oct 2005)
New Revision: 2567

Modified:
   data/CVE/list
Log:
More data from nonvulns-sarge.src, up to revision 1.30


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-10-25 13:39:11 UTC (rev 2566)
+++ data/CVE/list	2005-10-25 13:53:18 UTC (rev 2567)
@@ -1287,8 +1287,10 @@
 	{DSA-809-2 DSA-809-1}
 	- squid 2.5.10-5 (medium)
 CVE-2005-2793 (PHP remote code injection vulnerability in welcome.php in phpLDAPadmin ...)
+	[sarge] - phpldapadmin <not-affected> (code not present in sarge)
 	- phpldapadmin 0.9.6c-7 (bug #325785; medium)
 CVE-2005-2792 (Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6 ...)
+	[sarge] - phpldapadmin <not-affected> (code not present in sarge)
 	- phpldapadmin 0.9.6c-7 (bug #325785; medium)
 CVE-2005-2791 (BFCommand &amp; Control Server Manager BFCC 1.22_A and earlier, and BFVCC ...)
 	NOT-FOR-US: BFCC
@@ -5808,7 +5810,7 @@
 CVE-2005-1741 (Gearbox Software Halo: Combat Evolved 1.6 allows remote attackers to ...)
 	NOT-FOR-US: Halo
 CVE-2005-1740 (fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files ...)
-	NOTE: fixproc not installed in Debian package
+	- net-snmp <not-affected> (fixproc not installed in Debian package)
 CVE-2005-1739 (The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick ...)
 	- imagemagick 6:6.0.6.2-2.4 (bug #310690; bug #310812)
 CVE-2005-1738 (Format string vulnerability in the logPrintBadfile function in ...)
@@ -9360,7 +9362,7 @@
 CVE-2005-0707 (Buffer overflow in the IMAP daemon (IMAP4d32.exe) for Ipswitch ...)
 	NOT-FOR-US: Ipswitch Collaboration Suite
 CVE-2005-0706 (Buffer overflow in discdb.c for grip 3.1.2 allows attackers to cause a ...)
-	NOTE: Sarge version of gnome-vfs2 does not install the module with the vulnerable code
+	[sarge] - gnome-vfs2 <not-affected> (does not install the module with the vulnerable code)
 	NOTE: fixed in gnome-vfs2 2.10 long ago too.
 	- grip 3.2.0-4 (low)
 	- libcdaudio 0.99.9-2.1 (bug #304799; low)

More information about the Secure-testing-commits mailing list