[Secure-testing-commits] r5174 - in data: CVE DSA

Mon Dec 25 18:29:46 CET 2006

Author: jmm-guest
Date: 2006-12-25 18:29:44 +0100 (Mon, 25 Dec 2006)
New Revision: 5174

Modified:
   data/CVE/list
   data/DSA/list
Log:
new links2 DSA
fix CVE reference for mincore Linux DoS
fix mplayer version numbers


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-12-25 12:11:37 UTC (rev 5173)
+++ data/CVE/list	2006-12-25 17:29:44 UTC (rev 5174)
@@ -4149,9 +4149,8 @@
 	NOT-FOR-US: HP-UX
 CVE-2006-4819 (Heap-based buffer overflow in Opera 9.0 and 9.01 allows remote ...)
 	NOT-FOR-US: Opera
-CVE-2006-4818 [mincore DoS]
+CVE-2006-4818
 	RESERVED
-	TODO: Check, when this was fixed in linux-2.6
 CVE-2006-4817
 	RESERVED
 CVE-2006-4816
@@ -4159,7 +4158,7 @@
 CVE-2006-4815
 	RESERVED
 CVE-2006-4814 (The mincore function in the Linux kernel before 2.4.33.6 does not ...)
-	TODO: check
+	- linux-2.6 2.6.18-9
 CVE-2006-4813 (The __block_prepare_write function in fs/buffer.c for Linux kernel ...)
 	{DSA-1233}
 	- linux-2.6 2.6.13-1
@@ -31597,11 +31596,11 @@
 CVE-2004-1312 (A bug in the HTML parser in a certain Microsoft HTML library, as used ...)
 	NOT-FOR-US: Microsoft
 CVE-2004-1311 (Integer overflow in the real_setup_and_get_header function in real.c ...)
-	- mplayer 1.0pre6a-1
+	- mplayer 1.0~pre6a-1
 CVE-2004-1310 (Stack-based buffer overflow in the asf_mmst_streaming.c functionality ...)
-	- mplayer 1.0pre6a-1
+	- mplayer 1.0~pre6a-1
 CVE-2004-1309 (Heap-based buffer overflow in the demux_open_bmp function in ...)
-	- mplayer 1.0pre6a-1
+	- mplayer 1.0~pre6a-1
 CVE-2004-1308 (Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff ...)
 	{DSA-617-1}
 	- tiff 3.6.1-4
@@ -33779,7 +33778,7 @@
 	{DSA-504}
 	- heimdal 0.6.2-1
 CVE-2004-0433 (Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) ...)
-	- mplayer 1.0pre6a-1
+	- mplayer 1.0~pre6a-1
 	- xine-lib 1-rc4
 CVE-2004-0432 (ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL ...)
 	- proftpd 1.2.9-4
@@ -33909,7 +33908,7 @@
 CVE-2004-0387 (Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer ...)
 	NOT-FOR-US: RealPlayer plugin
 CVE-2004-0386 (Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, ...)
-	- mplayer 1.0pre6a-1
+	- mplayer 1.0~pre6a-1
 CVE-2004-0385 (Heap-based buffer overflow in Oracle 9i Application Server Web Cache ...)
 	NOT-FOR-US: Oracle 9i Application Server Web Cache
 CVE-2004-0384

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-12-25 12:11:37 UTC (rev 5173)
+++ data/DSA/list	2006-12-25 17:29:44 UTC (rev 5174)
@@ -1,3 +1,6 @@
+[21 Dec 2006] DSA-1240-1 links2
+	{CVE-2006-5925}
+	[sarge] - links2 2.1pre16-1sarge1
 [17 Dec 2006] DSA-1239-1 sql-ledger
 	{CVE-2006-4244 CVE-2006-4731 CVE-2006-5872}
 	[sarge] - sql-ledger 2.4.7-2sarge1


