[Secure-testing-commits] r3415 - in data: CVE DSA

[Micah Anderson]

Author: micah
Date: 2006-02-03 19:20:29 +0000 (Fri, 03 Feb 2006)
New Revision: 3415

Modified:
   data/CVE/list
   data/DSA/list
Log:
DSA 964-1 gnocatan (and pioneers in sid)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-02-03 19:16:49 UTC (rev 3414)
+++ data/CVE/list	2006-02-03 19:20:29 UTC (rev 3415)
@@ -196,10 +196,11 @@
 	TODO: check
 CVE-2003-1291 (VMware ESX Server 1.5.2 before Patch 4 allows local users to execute ...)
 	TODO: check
-CVE-2006-XXXX [pioneers: Client and server can crash from huge chat buffer]
+CVE-2006-0467 (Unspecified vulnerability in pioneers before 0.9.49 allows remote ...)
+	{ DSA-964-1}
+	[woody] - gnocatan 0.6.1-5woody3
+	[sarge] - gnocatan 0.8.1.59-1sarge1
 	- pioneers 0.9.49-1 (bug #350237; medium)
-CVE-2006-0467 (Unspecified vulnerability in pioneers before 0.9.49 allows remote ...)
-	TODO: check
 CVE-2006-0466 (Cross-site scripting (XSS) vulnerability in search.asp in Goldstag ...)
 	NOT-FOR-US: Goldstag Content Management System
 CVE-2006-0465 (Cross-site scripting (XSS) vulnerability in risultati_ricerca.php in ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-02-03 19:16:49 UTC (rev 3414)
+++ data/DSA/list	2006-02-03 19:20:29 UTC (rev 3415)
@@ -1,3 +1,12 @@
+[03 Feb 2006] DSA-964-1 gnocatan - buffer overflow
+	{ CVE-2006-0467 }
+	[woody] - gnocatan 0.6.1-5woody3
+	[sarge] - gnocatan 0.8.1.59-1sarge1
+	NOTE: Fixed in sid at time of DSA (package name change to pioneers)
+[02 Feb 2006] DSA-963-1 mydns - missing input sanitising
+	{ CVE-2006-0351 }
+	[sarge] - mydns 1.0.0-4sarge1
+	NOTE: fixed in sid at time of DSA
 [01 Feb 2006] DSA-962-1 pdftohtml - buffer overflows
 	{CVE-2005-3191 CVE-2005-3192 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628}
 	[sarge] - pdftohtml 0.36-11sarge1