[Secure-testing-commits] r5160 - data/CVE

Stefan Fritsch stef-guest at alioth.debian.org
Fri Dec 22 18:53:35 CET 2006


Author: stef-guest
Date: 2006-12-22 18:53:32 +0100 (Fri, 22 Dec 2006)
New Revision: 5160

Modified:
   data/CVE/list
Log:
CVE-2006-6678: new netrik issue (medium)
CVE-2006-6669: new webcalender issue (low)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-22 16:06:03 UTC (rev 5159)
+++ data/CVE/list	2006-12-22 17:53:32 UTC (rev 5160)
@@ -37,7 +37,7 @@
 CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For ...)
 	- chetcpasswd <unfixed> (medium)
 CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier ...)
-	TODO: check
+	- netrik <unfixed> (medium; bug filed)
 CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a ...)
 	NOT-FOR-US: ESET NOD32 Antivirus
 CVE-2006-6676 (Integer overflow in ESET NOD32 Antivirus before 1.1743 allows remote ...)
@@ -55,7 +55,7 @@
 CVE-2006-6670 (Unspecified vulnerability in Nortel CallPilot 4.x Server has unknown ...)
 	NOT-FOR-US: Nortel CallPilot
 CVE-2006-6669 (Cross-site scripting (XSS) vulnerability in export_handler.php in ...)
-	TODO: check
+	- webcalender <unfixed> (low; bug filed)
 CVE-2006-6668 (Cross-site scripting (XSS) vulnerability in VerliAdmin 0.3 and earlier ...)
 	NOT-FOR-US: VerliAdmin
 CVE-2006-6667 (Multiple SQL injection vulnerabilities in VerliAdmin 0.3 and earlier ...)




More information about the Secure-testing-commits mailing list