[Secure-testing-commits] r4553 - data/CVE
Stefan Fritsch
stef-guest at costa.debian.org
Fri Aug 11 16:15:44 UTC 2006
Author: stef-guest
Date: 2006-08-11 16:15:42 +0000 (Fri, 11 Aug 2006)
New Revision: 4553
Modified:
data/CVE/list
Log:
- new rails fix (first one was incomplete)
- CVE-2006-4019: new squirrelmail issue fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-08-10 18:58:20 UTC (rev 4552)
+++ data/CVE/list 2006-08-11 16:15:42 UTC (rev 4553)
@@ -1,5 +1,5 @@
CVE-2006-XXXX [unspecified vulnerability in ruby on rails]
- - rails 1.1.5-1 (bug #382255; medium)
+ - rails 1.1.6-1 (bug #382255; medium)
CVE-2006-4071 (Sign extension vulnerability in the createBrushIndirect function in ...)
TODO: check
CVE-2006-4070 (Format string vulnerability in Imendio Planner 0.13 allows ...)
@@ -108,8 +108,9 @@
CVE-2006-4020 (scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows ...)
- php5 <unfixed> (medium; bug #382256)
- php4 <unfixed> (medium; bug #382261)
-CVE-2006-4019
+CVE-2006-4019 [squirrelmail variable overwriting]
RESERVED
+ - squirrelmail 2:1.4.8-1
CVE-2006-4018 (Heap-based buffer overflow in the pefromupx function in ...)
- clamav 0.88.4-1 (high; bug #382004; bug #382007)
CVE-2006-4017 (Cross-site scripting (XSS) vulnerability in the search module in Inter ...)
More information about the Secure-testing-commits
mailing list