[Secure-testing-commits] r4490 - data/CVE
Stefan Fritsch
stef-guest at costa.debian.org
Wed Aug 2 19:22:06 UTC 2006
Author: stef-guest
Date: 2006-08-02 19:22:04 +0000 (Wed, 02 Aug 2006)
New Revision: 4490
Modified:
data/CVE/list
Log:
- new courier-authlib issue fixed
- cheesetracker fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-08-02 10:16:45 UTC (rev 4489)
+++ data/CVE/list 2006-08-02 19:22:04 UTC (rev 4490)
@@ -1,3 +1,6 @@
+CVE-2006-XXXX [courier-authdaemon: wrong socket permissions may lead to password disclosure]
+ - courier-authlib 0.58-3.1 (bug #378571; medium)
+ [sarge] - courier-authlib <not-affected> (bug #378571; medium)
CVE-2006-XXXX [opencubicplayer buffer overflows]
- ocp (medium; bug #381098)
CVE-2006-XXXX [uqwk buffer overflow]
@@ -55,7 +58,7 @@
CVE-2006-3815 (heartbeat.c in heartbeat before 2.0.6 sets insecure permissions in an ...)
- heartbeat 1.2.4-13 (bug #379904)
CVE-2006-3814 (Buffer overflow in the Loader_XM::load_instrument_internal function in ...)
- - cheesetracker <unfixed> (bug #380364; low)
+ - cheesetracker 0.9.9-6 (bug #380364; low)
CVE-2006-3813
RESERVED
CVE-2006-3812 [firefox/mozilla chrome: scheme loading remote content]
More information about the Secure-testing-commits
mailing list