[Secure-testing-commits] r4511 - data/CVE

Stefan Fritsch stef-guest at costa.debian.org
Sun Aug 6 17:38:37 UTC 2006 

Author: stef-guest
Date: 2006-08-06 17:38:35 +0000 (Sun, 06 Aug 2006)
New Revision: 4511

Modified:
   data/CVE/list
Log:
- libwmf fixed
- apache2 fixed
- fbi fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-08-06 16:44:29 UTC (rev 4510)
+++ data/CVE/list	2006-08-06 17:38:35 UTC (rev 4511)
@@ -110,7 +110,7 @@
 CVE-2006-3919 (SQL injection vulnerability in index.php in SD Studio CMS allows ...)
 	NOT-FOR-US: SD Studio CMS
 CVE-2006-3918 (http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 ...)
-	- apache2 <unfixed> (bug #381376; medium)
+	- apache2 2.0.55-4.1 (bug #381376; medium)
 	- apache <unfixed> (bug #381381; medium)
 CVE-2006-3917 (PHP remote file inclusion vulnerability in inc/gabarits.php in R. ...)
 	NOT-FOR-US: PHP Forge
@@ -539,7 +539,7 @@
 CVE-2006-3747 (Off-by-one error in the the ldap scheme handling in the Rewrite module ...)
 	{DSA-1132-1 DSA-1131-1}
 	- apache <unfixed> (medium; bug #380231)
-	- apache2 <unfixed> (medium; bug #380182)
+	- apache2 2.0.55-4.1 (medium; bug #380182)
 CVE-2006-3746 (Buffer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote ...)
 	{DSA-1141-1 DSA-1140-1}
 	- gnupg 1.4.5-1 (medium)
@@ -1344,7 +1344,7 @@
 CVE-2006-3377 (Cross-site scripting (XSS) vulnerability in JMB Software AutoRank PHP ...)
 	NOT-FOR-US: JMB Software AutoRank PHP
 CVE-2006-3376 (Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple ...)
-	- libwmf <unfixed> (bug #381538; medium)
+	- libwmf 0.2.8.4-2 (bug #381538; medium)
 CVE-2006-3375 (PHP remote file inclusion vulnerability in includes/header.inc.php in ...)
 	NOT-FOR-US: Randshop
 CVE-2006-3374 (PHP remote file inclusion vulnerability in index.php in Randshop 1.2 ...)
@@ -1885,6 +1885,7 @@
 	- osiris 4.2.0-2 (medium)
 CVE-2006-3119 (The fbgs framebuffer Postscript/PDF viewer in fbi before 2.01 has a ...)
 	{DSA-1124}
+	- fbi 2.05-1
 CVE-2006-3118 (spread uses a temporary file with a static filename based on the port ...)
 	- spread <unfixed> (bug #375617; low)
 	[sarge] - spread <no-dsa> (Minimal security implications)
@@ -5303,7 +5304,7 @@
 	- gallery 1.5.3-1 (bug #361758)
 CVE-2006-1695 (The fbgs script in the fbi package 2.01-1.4, when the TMPDIR ...)
 	{DSA-1068-1}
-	- fbi <unfixed> (bug #361370)
+	- fbi 2.05-1 (bug #361370)
 CVE-2006-1694 (SQL injection vulnerability in members.php in XBrite Members 1.1 and ...)
 	NOT-FOR-US: XBrite Members
 CVE-2006-1693 (Unspecified vulnerability in GlobalSCAPE Secure FTP Server before ...)

More information about the Secure-testing-commits mailing list