[Secure-testing-commits] r5139 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Dec 17 21:14:22 CET 2006
Author: joeyh
Date: 2006-12-17 21:14:20 +0100 (Sun, 17 Dec 2006)
New Revision: 5139
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-12-17 17:46:03 UTC (rev 5138)
+++ data/CVE/list 2006-12-17 20:14:20 UTC (rev 5139)
@@ -191,6 +191,7 @@
CVE-2006-6482 (Adobe ColdFusion MX7 allows remote attackers to obtain sensitive ...)
NOT-FOR-US: ColdFusion
CVE-2006-6481 (Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a ...)
+ {DSA-1238-1}
- clamav 0.88.7-1 (low)
CVE-2006-6480 (admin/admin_membre/fiche_membre.php in AnnonceScriptHP 2.0 allows ...)
NOT-FOR-US: AnnonceScriptHP
@@ -341,6 +342,7 @@
CVE-2006-6407 (F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote ...)
NOT-FOR-US: F-Prot
CVE-2006-6406 (Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus ...)
+ {DSA-1238-1}
- clamav 0.88.7-1 (medium)
CVE-2006-6405 (BitDefender Mail Protection for SMB 2.0 allows remote attackers to ...)
NOT-FOR-US: BitDefender
@@ -1486,8 +1488,9 @@
NOTE: http://secunia.com/advisories/23230/
CVE-2006-5872
RESERVED
+ {DSA-1239-1}
CVE-2006-5871 (smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before ...)
- {DSA-1233}
+ {DSA-1237 DSA-1233}
- linux-2.6 <not-affected> (Current Linux versions already implement intended behaviour)
CVE-2006-5870
RESERVED
@@ -1964,7 +1967,7 @@
CVE-2006-5650 (The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ ...)
NOT-FOR-US: ICQPhone.SipxPhoneManager
CVE-2006-5649 (Unspecified vulnerability in the "alignment check exception handling" ...)
- {DSA-1233}
+ {DSA-1237 DSA-1233}
- linux-2.6 2.6.18-4
CVE-2006-5648 (Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to cause a ...)
TODO: check
@@ -3001,7 +3004,7 @@
CVE-2006-5175 (Cross-site request forgery (CSRF) vulnerability in the administrative ...)
NOT-FOR-US: TeraStation HD-HTGL
CVE-2006-5174 (The copy_from_user function in the uaccess code in Linux kernel 2.6 ...)
- {DSA-1233}
+ {DSA-1237 DSA-1233}
- linux-2.6 2.6.18-5
NOTE: s390 only, fix in 2.6.18-3 was reverted in 2.6.18-4
CVE-2006-5173 (Linux kernel does not properly save or restore EFLAGS during a context ...)
@@ -3375,7 +3378,7 @@
CVE-2006-4998
RESERVED
CVE-2006-4997 (The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux ...)
- {DSA-1233}
+ {DSA-1237 DSA-1233}
- linux-2.6 2.6.18-1
CVE-2006-4996 (Unspecified vulnerability in JoomlaLib (com_joomlalib) before 1.2.2 ...)
NOT-FOR-US: JoomlaLib (com_joomlalib) for Joomla!
@@ -3959,6 +3962,7 @@
CVE-2000-1241 (Unspecified vulnerability in Haakon Nilsen simple, integrated ...)
NOT-FOR-US: Data pre-dating the Security Tracker
CVE-2006-4731 (Multiple directory traversal vulnerabilities in (1) login.pl and (2) ...)
+ {DSA-1239-1}
- sql-ledger 2.6.19-1
CVE-2006-4730
RESERVED
@@ -4407,7 +4411,7 @@
CVE-2006-4539 ((1) includes/widgets/module_company_tickets.php and (2) ...)
NOT-FOR-US: Cerberus Helpdesk
CVE-2006-4538 (Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC ...)
- {DSA-1233}
+ {DSA-1237 DSA-1233}
- linux-2.6 2.6.17-9
CVE-2006-4537 (NET$SESSION_CONTROL.EXE before 20060825 in DECnet-Plus in OpenVMS ...)
NOT-FOR-US: OpenVMS
@@ -5100,6 +5104,7 @@
CVE-2006-4245
RESERVED
CVE-2006-4244 (SQL-Ledger 2.4.4 through 2.6.17 authenticates users by verifying that ...)
+ {DSA-1239-1}
- sql-ledger 2.6.18-1 (medium; bug #386519)
CVE-2006-4243 [linux vserver priviledge escalation in remount code]
RESERVED
@@ -5435,6 +5440,7 @@
CVE-2006-4094
RESERVED
CVE-2006-4093 (Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on ...)
+ {DSA-1237}
- linux-2.6 2.6.17-7
CVE-2006-4092 (Simpliciti Locked Browser does not properly limit a user's actions to ...)
NOT-FOR-US: Simpliciti Locked Browser
More information about the Secure-testing-commits
mailing list