[Secure-testing-commits] r5132 - data/CVE

Sat Dec 16 09:14:27 CET 2006

Author: joeyh
Date: 2006-12-16 09:14:25 +0100 (Sat, 16 Dec 2006)
New Revision: 5132

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-12-16 00:29:33 UTC (rev 5131)
+++ data/CVE/list	2006-12-16 08:14:25 UTC (rev 5132)
@@ -1467,6 +1467,7 @@
 CVE-2006-5876
 	RESERVED
 CVE-2006-5875 (eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote ...)
+	{DSA-1236-1}
 	- enemies-of-carlotta 1.2.4-1 (medium)
 CVE-2006-5874 (Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to ...)
 	{DSA-1232-1}
@@ -1478,6 +1479,7 @@
 CVE-2006-5872
 	RESERVED
 CVE-2006-5871 (smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before ...)
+	{DSA-1233}
 	TODO: check
 CVE-2006-5870
 	RESERVED
@@ -1731,6 +1733,7 @@
 CVE-2006-5752
 	RESERVED
 CVE-2006-5751 (Integer overflow in the get_fdb_entries function in ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-8 (medium)
 CVE-2006-5750 (Directory traversal vulnerability in the DeploymentFileRepository ...)
 	NOT-FOR-US: JBoss
@@ -1953,6 +1956,7 @@
 CVE-2006-5650 (The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ ...)
 	NOT-FOR-US: ICQPhone.SipxPhoneManager
 CVE-2006-5649 (Unspecified vulnerability in the &quot;alignment check exception handling&quot; ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-4
 CVE-2006-5648 (Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to cause a ...)
 	TODO: check
@@ -2018,6 +2022,7 @@
 CVE-2006-5620 (PHP remote file inclusion vulnerability in include/menu_builder.php in ...)
 	NOT-FOR-US: MiniBILL
 CVE-2006-5619 (The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-4 (low)
 CVE-2006-5618 (Directory traversal vulnerability in script/cat_for_aff.php in Netref ...)
 	NOT-FOR-US: Netref
@@ -2339,6 +2344,7 @@
 CVE-2006-5468 (Unspecified vulnerability in the HTTP dissector in Wireshark (formerly ...)
 	- wireshark 0.99.4-1 (bug #396258; medium)
 CVE-2006-5467 (The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a ...)
+	{DSA-1235-1 DSA-1234-1}
 	- ruby1.8 1.8.5-3 (medium; bug #398457)
 	- ruby1.9 <unfixed> (medium)
 	NOTE: ruby1.9 not to be released with etch
@@ -2987,6 +2993,7 @@
 CVE-2006-5175 (Cross-site request forgery (CSRF) vulnerability in the administrative ...)
 	NOT-FOR-US: TeraStation HD-HTGL
 CVE-2006-5174 (The copy_from_user function in the uaccess code in Linux kernel 2.6 ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-5
 	NOTE: s390 only, fix in 2.6.18-3 was reverted in 2.6.18-4
 CVE-2006-5173 (Linux kernel does not properly save or restore EFLAGS during a context ...)
@@ -3360,6 +3367,7 @@
 CVE-2006-4998
 	RESERVED
 CVE-2006-4997 (The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-1
 CVE-2006-4996 (Unspecified vulnerability in JoomlaLib (com_joomlalib) before 1.2.2 ...)
 	NOT-FOR-US: JoomlaLib (com_joomlalib) for Joomla!
@@ -3751,6 +3759,7 @@
 CVE-2006-4814
 	RESERVED
 CVE-2006-4813 (The __block_prepare_write function in fs/buffer.c for Linux kernel ...)
+	{DSA-1233}
 	- linux-2.6 2.6.13-1
 CVE-2006-4812 (Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote ...)
 	- php4 <not-affected>
@@ -4389,6 +4398,7 @@
 CVE-2006-4539 ((1) includes/widgets/module_company_tickets.php and (2) ...)
 	NOT-FOR-US: Cerberus Helpdesk
 CVE-2006-4538 (Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC ...)
+	{DSA-1233}
 	- linux-2.6 2.6.17-9
 CVE-2006-4537 (NET$SESSION_CONTROL.EXE before 20060825 in DECnet-Plus in OpenVMS ...)
 	NOT-FOR-US: OpenVMS
@@ -6268,6 +6278,7 @@
 	- kdebase <not-affected>
 	NOTE: only in Fedora
 CVE-2006-3741 (The perfmonctl system call (sys_perfmonctl) in Linux kernel 2.4.x and ...)
+	{DSA-1233}
 	- linux-2.6 2.6.18-1
 CVE-2006-3740 (Integer overflow in the scan_cidfont function in X.Org 6.8.2 and ...)
 	{DSA-1193-1}


