[Secure-testing-commits] r3823 - in data: CVE DSA

Moritz Muehlenhoff jmm-guest at costa.debian.org
Tue Apr 18 07:25:55 UTC 2006 

Author: jmm-guest
Date: 2006-04-18 07:25:44 +0000 (Tue, 18 Apr 2006)
New Revision: 3823

Modified:
   data/CVE/list
   data/DSA/list
Log:
bsdgames DSA
bzflag fixed
remove duped kphone temp entry


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-04-17 19:58:02 UTC (rev 3822)
+++ data/CVE/list	2006-04-18 07:25:44 UTC (rev 3823)
@@ -1,7 +1,7 @@
 CVE-2006-XXXX [two amaya buffer overflows]
 	- amaya <unfixed> (bug #362575)
 CVE-2006-XXXX [kphone stores SIP passwords in world readable files]
-	- kphone 4.2-3 (bug #337830)
+	- kphone 4.2-3 (bug #337830; low)
 CVE-2006-XXXX [resmgr access restriction bypass]
 	- resmgr 1.0-4 (low)
 CVE-2006-1789 (Directory traversal vulnerability in pajax_call_dispatcher.php in ...)
@@ -2967,8 +2967,6 @@
 	NOT-FOR-US: Sun Java System Access Manager
 CVE-2003-1293 (Multiple cross-site scripting (XSS) vulnerabilities in NukedWeb ...)
 	NOT-FOR-US: NukedWeb
-CVE-2006-XXXX [kphone creates world-readable config file with passwords]
-	- kphone <unfixed> (bug #337830; low)
 CVE-2006-0530 (Computer Associates (CA) Message Queuing (CAM / CAFT) before 1.07 ...)
 	NOT-FOR-US: CA Message Queuing
 	NOTE: CA Message Queuing is embeded in a lot of products, but they all seem
@@ -4376,7 +4374,7 @@
 	- ethereal 0.10.14-1 (bug #345243; low)
 	NOTE: This affects Woody and Sarge
 CVE-2005-4584 (BZFlag server 2.0.4 and earlier allows remote attackers to cause a ...)
-	- bzflag <unfixed> (bug #345245; low)
+	- bzflag 2.0.6.20060412-1 (bug #345245; low)
 	NOTE: Sarge and Woody affected
 CVE-2005-4583 (Unspecified vulnerability in the Management Interface in VMware ESX ...)
 	NOT-FOR-US: VMWare

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-04-17 19:58:02 UTC (rev 3822)
+++ data/DSA/list	2006-04-18 07:25:44 UTC (rev 3823)
@@ -1,3 +1,7 @@
+[17 Apr 2006] DSA-1036-1 bsdgames - buffer overflow
+        {CVE-2006-1744}
+        [woody] - bsdgames 2.13-7woody0
+        [sarge] - bsdgames 2.7.59-7sarge1
 [15 Apr 2006] DSA-1035-1 fcheck - insecure temporary file
         {CVE-2006-1753}
         [woody] - fcheck <not-affected>

More information about the Secure-testing-commits mailing list