[Secure-testing-commits] r3781 - data/CVE
Stefan Fritsch
stef-guest at costa.debian.org
Mon Apr 10 20:20:16 UTC 2006
Author: stef-guest
Date: 2006-04-10 20:20:07 +0000 (Mon, 10 Apr 2006)
New Revision: 3781
Modified:
data/CVE/list
Log:
possible mpg123 issue, some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-04-10 15:02:41 UTC (rev 3780)
+++ data/CVE/list 2006-04-10 20:20:07 UTC (rev 3781)
@@ -1,19 +1,20 @@
CVE-2006-1656 (vserver in util-vserver 0.30.209 executes a command as root when the ...)
- util-vserver 0.30.210-1 (bug #360438; unimportant)
CVE-2006-1655 (Unspecified vulnerability in mpg123 0.59r allows user-complicit ...)
- TODO: check
+ - mpg123 <unfixed> (bug filed; unknown)
CVE-2006-1654 (Directory traversal vulnerability in the HP Color LaserJet 2500 ...)
- TODO: check
+ NOT-FOR-US: HP Colour LaserJet 2500 and 4600 Toolbox
CVE-2006-1653 (PHP remote file inclusion vulnerability in loadkernel.php in ...)
- TODO: check
+ NOT-FOR-US: AngelineCMS
CVE-2006-1652 (Multiple buffer overflows in (a) UltraVNC (aka Ultr at VNC) 1.0.1 and ...)
- TODO: check
+ NOT-FOR-US: UltraVNC
CVE-2006-1651 (** DISPUTED ** ...)
TODO: check
CVE-2006-1650 (Firefox 1.5.0.1 allows remote attackers to spoof the address bar and ...)
TODO: check
+ NOTE: other reports indicate that Firefox is not vulnerable
CVE-2006-1649 (The "restore to" selection in the "quarantine a file" capability of ...)
- TODO: check
+ NOT-FOR-US: Eset Software NOD32 Antivirus 2.5
CVE-2006-1648 (SMART SynchronEyes Student and Teacher 6.0, and possibly earlier ...)
TODO: check
CVE-2006-1647 (An unspecified "logical programming mistake" in SMART SynchronEyes ...)
More information about the Secure-testing-commits
mailing list