[Secure-testing-commits] r4616 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Wed Aug 23 20:45:55 UTC 2006 

Author: jmm-guest
Date: 2006-08-23 20:45:52 +0000 (Wed, 23 Aug 2006)
New Revision: 4616

Modified:
   data/CVE/list
Log:
spring cleanup:
syslog-ng not-affected
removed gjay, a bug, not a security problem
removed bogus python issue
libpam-opie unimportant
mutt unimportant
vipw not exploitable
no-dsa for several minor issues
kmail issue is an inherent design problem


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-08-23 19:11:20 UTC (rev 4615)
+++ data/CVE/list	2006-08-23 20:45:52 UTC (rev 4616)
@@ -943,7 +943,8 @@
 CVE-2006-3838 (Multiple stack-based buffer overflows in eIQnetworks Enterprise ...)
 	NOT-FOR-US: eIQnetworks Enterprise
 CVE-2006-XXXX [syslog-ng dos]
-	- syslog-ng 2.0rc1-2
+	- syslog-ng 2.0rc1-2 (low)
+	[sarge] - syslog-ng <not-affected> (Vulnerable code not present)
 CVE-2006-XXXX [courier-authdaemon: wrong socket permissions may lead to password disclosure]
 	- courier-authlib 0.58-3.1 (bug #378571; medium)
 	[sarge] - courier-authlib <not-affected> (bug #378571; medium)
@@ -951,8 +952,6 @@
 	- ocp 0.1.10rc6-1 (medium; bug #381098)
 CVE-2006-XXXX [uqwk buffer overflow]
 	- uqwk 2.21-13 (bug #376577; medium)
-CVE-2006-XXXX [gjay buffer overrun]
-	- gjay 0.2.8.3-5 (bug #361056)
 CVE-2006-XXXX [Webalizer buffer overflows]
 	- webalizer <unfixed> (unknown)
 	NOTE: 11_various_buffer_overflows should be reviewed for exploitability
@@ -3418,6 +3417,7 @@
 	NOT-FOR-US: pppBLOG
 CVE-2006-2769 (The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through ...)
 	- snort 2.3.3-8 (low; bug #381726)
+	[sarge] - snort <no-dsa> (Minor impact)
 CVE-2006-2768 (PHP remote file inclusion vulnerability in METAjour 2.1, when ...)
 	NOT-FOR-US: METAjour
 CVE-2006-2767 (PHP remote file inclusion vulnerability in Ottoman 1.1.2, when ...)
@@ -6389,14 +6389,15 @@
 CVE-2006-1543 (Multiple SQL injection vulnerabilities in vscripts (aka Kuba ...)
 	NOT-FOR-US: VNews 
 CVE-2006-1542 (Stack-based buffer overflow in Python 2.4.2 and earlier, running on ...)
-	- python2.3 <unfixed>
-	- python2.4 <unfixed>
+	NOT-FOR-US: Bogus issue, this doesn't trigger any local overflow
+	NOTE: Should be rejected
 CVE-2006-1541 (SQL injection vulnerability in Default.asp in EzASPSite 2.0 RC3 and ...)
 	NOT-FOR-US: EzASPSite
 CVE-2006-1540 (MSO.DLL in Microsoft Office 2000, Office XP (2002), and Office 2003 ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-1539 (Multiple buffer overflows in the checkscores function in scores.c in ...)
 	- bsdgames 2.17-6 (bug #361160)
+	[sarge] - bsdgames <no-dsa> (Minor impact)
 CVE-2006-1538 (The Enova X-Wall ASIC encrypts with a key obtained via Microwire from ...)
 	NOT-FOR-US: Enova X-Wall ASIC
 CVE-2006-1537 (Craig Knudsen WebCalendar 1.1.0-CVS allows remote attackers to obtain ...)
@@ -7326,6 +7327,7 @@
 	NOT-FOR-US: M-Phorum
 CVE-2006-1150 (Buffer overflow in Tenes Empanadas Graciela (TEG) 0.11.1, ...)
 	- teg 0.11.1-3 (bug #357645; low)
+	[sarge] - teg <no-dsa> (Only DoS against exotic, mostly single player game)
 CVE-2006-1149 (PHP remote file inclusion vulnerability in lib/OWL_API.php in OWL ...)
 	NOT-FOR-US: OWL Intranet Engine 
 CVE-2006-1148 (Multiple stack-based buffer overflows in the procConnectArgs function ...)
@@ -8529,8 +8531,8 @@
 CVE-2006-0636 (desktop.php in eyeOS 0.8.9 and earlier tests for the existence of the ...)
 	NOT-FOR-US: eyeOS
 CVE-2006-0635 (Tiny C Compiler (TCC) 0.9.23 (aka TinyCC) evaluates the ...)
-	- tcc <unfixed> (bug #352202; medium)
-	NOTE: Sarge status not yet analysed
+	- tcc <unfixed> (bug #352202; low)
+	[sarge] - tcc <no-dsa> (Only incorrect code gen, hardly any production use)
 CVE-2006-0634 (Borland C++Builder 6 (BCB6) with Update Pack 4 Enterprise edition ...)
 	NOT-FOR-US: Borland C++Builder
 CVE-2006-0633 (The make_password function in ipsclass.php in Invision Power Board ...)
@@ -14364,7 +14366,7 @@
 	[sarge] - coreutils <no-dsa> (Minor issue, hardly exploitable)
 	[woody] - coreutils <no-dsa> (Minor issue, hardly exploitable)
 CVE-2005-XXXX [tar's rmt command may have undesired side effects]
-	- tar <unfixed> (bug #290435; low)
+	- tar <unfixed> (bug #290435; unimportant)
 	[sarge] - tar <no-dsa> (Hardly exploitable)
 CVE-2005-XXXX [smbmount doesn't honor gid/uid with kernel 2.4]
 	- kernel-source-2.4.27 <unfixed> (bug #310982; low)
@@ -16520,10 +16522,11 @@
 CVE-2005-3254 (The CGIwrap program before 3.9 on Debian GNU/Linux uses an incorrect ...)
 	{DTSA-6-1}
 	- cgiwrap 3.9-3.1 (bug #316881; low)
-	NOTE: Sarge and Woody affected
+	[sarge] - cgiwrap <no-dsa> (Minor impact)
 CVE-2005-3255 (The (1) cgiwrap and (2) php-cgiwrap packages before 3.9 in Debian ...)
 	{DTSA-6-1}
 	- cgiwrap 3.9-3.1 (bug #316901; low)
+	[sarge] - cgiwrap <no-dsa> (Minor information disclosure, only debugging libs)
 CVE-2004-2162 (Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow ...)
 	{DSA-980-1}
 	- tutos 1.1.20031017-2.1 (bug #318633; medium)
@@ -17126,8 +17129,10 @@
 	- ffmpeg 0.cvs20050811-1 (bug #320150; medium)
 CVE-2005-XXXX [xgalaga score file segfault]
 	- xgalaga 2.0.34-31 (bug #319686; low)
+	[sarge] - xgalaga <no-dsa> (Minor issue)
 CVE-2005-XXXX [xemeraldia games file overwrite]
 	- xemeraldia 0.4-1 (bug #319661; low)
+	[sarge] -xemeraldia <no-dsa> (Very minor issue)
 CVE-2005-2335 (Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows ...)
 	{DSA-774-1}
 	NOTE: previous fix in -15 was broken
@@ -18088,6 +18093,7 @@
 	NOTE: see dannf's first bug comment; systemimager-ssh doesn't use compression
 	[woody] - texmacs <not-affected> (Woody contains zlib 1.1, which is not affected)
 	- texmacs 1:1.0.5-3 (bug #318100; medium)
+	[sarge] - texmacs <no-dsa> (Hardly exploitable)
 	- zlib 1:1.2.2-7 (bug #317133; medium)
 	- pvpgn 1.7.8-2 (bug #332236; unknown)
 	- mysql-dfsg-4.1 (bug #319858; unimportant)
@@ -19095,7 +19101,9 @@
 CVE-2001-1484 (Alcatel ADSL modems allow remote attackers to access the Trivial File ...)
 	NOT-FOR-US: Alcatel hardware issue
 CVE-2001-1483 (One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows ...)
-	- libpam-opie <unfixed> (bug #112279; low)
+	- libpam-opie <unfixed> (bug #112279; unimportant)
+	NOTE: This is documented and not really important. In contrast to passwords
+	NOTE: used by humans 
 	[sarge] - libpam-opie <no-dsa> (Documented shortcoming, minor impact)
 CVE-2001-1482 (SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 ...)
 	NOTE: phpbb was initially uploaded as version 2 or phpbb has been removed now
@@ -19730,8 +19738,9 @@
 	- moodle 1.4.4.dfsg.1-3
 CVE-2005-2351 [Minor DoS condition in mutt due to preditable tempfiles]
 	RESERVED
-	- mutt <unfixed> (bug #311296; low)
+	- mutt <unfixed> (bug #311296; unimportant)
 	[sarge] - mutt <no-dsa> (Minor annoyance, not a real DoS)
+	NOTE: An "attacker" could achieve the same by simply filling up /tmp
 CVE-2005-XXXX [gforge arbitrary code execution through viewFile.php]
 	NOTE: viewFile.php has been removed along with other files in -26, so Debian is
 	NOTE: no longer affected.
@@ -21435,8 +21444,6 @@
 	- shadow 4.0.8
 	[sarge] - shadow <not-affected> (was introduced after version 4.0.3)
 	[woody] - shadow <not-affected> (was introduced after version 4.0.3)
-CVE-2005-XXXX [Insecure tempfile generation in shadow's vipw] 
-	- shadow 1:4.0.3-33
 CVE-2005-1364 (Multiple SQL injection vulnerabilities in MetaBid Auctions allow ...)
 	NOT-FOR-US: MetaBid Auctions
 CVE-2005-1363 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for PayFlow ...)
@@ -24597,15 +24604,12 @@
 CVE-2005-0405
 	RESERVED
 CVE-2005-0404 (KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email ...)
-	NOTE: see http://mail.kde.org/pipermail/kmail-devel/2005-February/015490.html
 	NOTE: see http://bugs.kde.org/show_bug.cgi?id=96020
-	NOTE: see http://www.securiteam.com/unixfocus/5GP0B0AFFE.html
-	NOTE: see http://secunia.com/advisories/14925
-	NOTE: kde maintainers informed of it by security team
-	- kdepim <unfixed> (bug #305601; low)
+	- kdepim 3.4-1 (bug #305601; low)
 	[sarge] - kdepim <no-dsa> (Hardly exploitable)
-	NOTE: On woody, kmail is part of kdenetwork, but there is no GnuPG
-	NOTE: support, so this issue is not very important.
+	NOTE: According to the KDE bug the URL bar in 3.4 cannot be manipulated. Kmail also
+	NOTE: warns that HTML mails introduce the risk of phishing. This could as well
+	NOTE: be unimportant
 CVE-2005-0403 (init_dev in tty_io.c in the Red Hat backport of NPTL to Red Hat ...)
 	- glibc <not-affected> (Specific to the NPTL backport for RHEL 3)
 CVE-2005-0402 (Firefox before 1.0.2 allows remote attackers to execute arbitrary code ...)

More information about the Secure-testing-commits mailing list