[Secure-testing-commits] r4490 - data/CVE

Stefan Fritsch stef-guest at costa.debian.org
Wed Aug 2 19:22:06 UTC 2006


Author: stef-guest
Date: 2006-08-02 19:22:04 +0000 (Wed, 02 Aug 2006)
New Revision: 4490

Modified:
   data/CVE/list
Log:
- new courier-authlib issue fixed
- cheesetracker fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-08-02 10:16:45 UTC (rev 4489)
+++ data/CVE/list	2006-08-02 19:22:04 UTC (rev 4490)
@@ -1,3 +1,6 @@
+CVE-2006-XXXX [courier-authdaemon: wrong socket permissions may lead to password disclosure]
+	- courier-authlib 0.58-3.1 (bug #378571; medium)
+	[sarge] - courier-authlib <not-affected> (bug #378571; medium)
 CVE-2006-XXXX [opencubicplayer buffer overflows]
 	- ocp (medium; bug #381098)
 CVE-2006-XXXX [uqwk buffer overflow]
@@ -55,7 +58,7 @@
 CVE-2006-3815 (heartbeat.c in heartbeat before 2.0.6 sets insecure permissions in an ...)
 	- heartbeat 1.2.4-13 (bug #379904)
 CVE-2006-3814 (Buffer overflow in the Loader_XM::load_instrument_internal function in ...)
-	- cheesetracker <unfixed> (bug #380364; low)
+	- cheesetracker 0.9.9-6 (bug #380364; low)
 CVE-2006-3813
 	RESERVED
 CVE-2006-3812 [firefox/mozilla  chrome: scheme loading remote content]




More information about the Secure-testing-commits mailing list