[Secure-testing-commits] r3834 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Thu Apr 20 09:33:38 UTC 2006 

Author: jmm-guest
Date: 2006-04-20 09:33:29 +0000 (Thu, 20 Apr 2006)
New Revision: 3834

Modified:
   data/CVE/list
Log:
marking backup-manager dupes


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-04-19 19:13:35 UTC (rev 3833)
+++ data/CVE/list	2006-04-20 09:33:29 UTC (rev 3834)
@@ -2341,8 +2341,7 @@
 CVE-2006-0840 (manage_user_page.php in Mantis 1.00rc4 and earlier does not properly ...)
 	- mantis <unfixed>
 CVE-2006-0839 (The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly ...)
-	TODO: check
-	NOTE: frag3 is only in 2.4, currently there is 2.3.3 in sid
+	- snort <not-affected> (frag3 is only in 2.4, currently there is 2.3.3 in sid)
 CVE-2006-0838 (IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 stores cleartext ...)
 	NOT-FOR-US: Tivoli
 CVE-2006-0837 (IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 has world-readable ...)
@@ -6685,7 +6684,8 @@
 	- cscope <unfixed> (bug #340177; medium)
 	NOTE: Sarge and Woody are affected
 CVE-2005-XXXX [unsafe file permissions in vpnc]
-	- vpnc <unfixed> (bug #340105; medium)
+	- vpnc 0.3.3+SVN20051028-3 (bug #340105; unimportant)
+	NOTE: Only an example file
 CVE-2006-0017
 	RESERVED
 CVE-2006-0016
@@ -11910,11 +11910,9 @@
 CVE-2005-2213 (Buffer overflow in the mms_interp_header function in mms.c in MMS ...)
 	NOT-FOR-US: MMS Ripper
 CVE-2005-2212 (Backup Manager 0.5.8a creates an archive repository with world ...)
-	- backup-manager 0.5.8-2 (bug #308897; low)
-	NOTE: maybe a duplicate of CVE-2005-1856, author contacted
+	NOTE: duplicate of CVE-2005-1856
 CVE-2005-2211 (Backup Manager 0.5.8a creates temporary files insecurely, which allows ...)
-	- backup-manager 0.5.8-2 (low)
-	NOTE: maybe a duplicate of CVE-2005-1855, author contacted 
+	NOTE: duplicate of CVE-2005-1855
 CVE-2005-2210 (Stack-based buffer overflow in Internet Download Manager 4.05 allows ...)
 	NOT-FOR-US: Internet Download Manager
 CVE-2005-2209 (Capturix ScanShare 1.06 build 50 stores sensitive information such as ...)

More information about the Secure-testing-commits mailing list