[Secure-testing-commits] r3487 - data/CVE

Joey Hess joeyh at costa.debian.org
Wed Feb 15 09:14:40 UTC 2006 

Author: joeyh
Date: 2006-02-15 09:14:32 +0000 (Wed, 15 Feb 2006)
New Revision: 3487

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-02-15 08:33:27 UTC (rev 3486)
+++ data/CVE/list	2006-02-15 09:14:32 UTC (rev 3487)
@@ -59,7 +59,7 @@
 CVE-2006-0649 (Cross-site scripting (XSS) vulnerability in DataparkSearch before 4.37 ...)
 	NOT-FOR-US: DataparkSearch
 CVE-2006-0648 (Multiple directory traversal vulnerabilities in PHP iCalendar 2.0.1, ...)
-        NOT-FOR-US: PHP iCalendar
+	NOT-FOR-US: PHP iCalendar
 CVE-2006-0647 (LDAP service in Sun Java System Directory Server 5.2, running on Linux ...)
 	NOT-FOR-US: Sun Java System Directory Server
 CVE-2006-0646 (ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain ...)
@@ -377,9 +377,9 @@
 CVE-2006-0514
 	RESERVED
 CVE-2006-0513 (Directory traversal vulnerability in pkmslogout in Tivoli Web Server ...)
- 	NOT-FOR-US: Tivoli
+	NOT-FOR-US: Tivoli
 CVE-2006-0512 (PADL MigrationTools 46 creates temporary files insecurely, which ...)
- 	NOT-FOR-US: PADL MigrationTools
+	NOT-FOR-US: PADL MigrationTools
 CVE-2006-0511 (** DISPUTED ** Blackboard Academic Suite 6.0 and earlier does not ...)
 	NOT-FOR-US: Blackboard Academic Suite
 CVE-2006-0510 (SQL injection vulnerability in userlogin.jsp in Daffodil CRM 1.5 ...)
@@ -925,7 +925,7 @@
 CVE-2006-0302 (ZyXel P2000W VoIP 802.11b Wireless Phone running firmware WV.00.02 ...)
 	NOT-FOR-US: ZyXel hardware
 CVE-2006-0301 (Heap-based buffer overflow in Splash.cc in xpdf, as used in other ...)
-	{DSA-971-1}
+	{DSA-972-1 DSA-971-1}
 	- poppler 0.4.5-1 (medium)
 	- tetex-bin 3.0-12 (medium)
 	- kdegraphics 4:3.5.1-2 (medium)
@@ -3327,10 +3327,13 @@
 	- mozilla-firefox <unfixed> (bug #340283; bug #345469; low)
 	- mozilla <unfixed> (bug #340282; low)
 CVE-2005-3895 (Open Ticket Request System (OTRS) 1.0.0 through 1.3.2 and 2.0.0 ...)
+	{DSA-973-1}
 	- otrs 2.0.4p01-1 (bug #340352; medium)
 CVE-2005-3894 (Multiple cross-site scripting (XSS) vulnerabilities in index.pl in ...)
+	{DSA-973-1}
 	- otrs 2.0.4p01-1 (bug #340352; medium)
 CVE-2005-3893 (Multiple SQL injection vulnerabilities in index.pl in Open Ticket ...)
+	{DSA-973-1}
 	- otrs 2.0.4p01-1 (bug #340352; medium)
 CVE-2005-3892 (Gadu-Gadu 7.20 allows remote attackers to eavesdrop on a user via a ...)
 	NOT-FOR-US: Gadu-Gadu

More information about the Secure-testing-commits mailing list