[Secure-testing-commits] r3494 - data/CVE
Joey Hess
joeyh at costa.debian.org
Wed Feb 15 21:14:31 UTC 2006
Author: joeyh
Date: 2006-02-15 21:14:22 +0000 (Wed, 15 Feb 2006)
New Revision: 3494
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-02-15 17:21:54 UTC (rev 3493)
+++ data/CVE/list 2006-02-15 21:14:22 UTC (rev 3494)
@@ -932,7 +932,7 @@
CVE-2006-0302 (ZyXel P2000W VoIP 802.11b Wireless Phone running firmware WV.00.02 ...)
NOT-FOR-US: ZyXel hardware
CVE-2006-0301 (Heap-based buffer overflow in Splash.cc in xpdf, as used in other ...)
- {DSA-972-1 DSA-971-1}
+ {DSA-974-1 DSA-972-1 DSA-971-1}
- poppler 0.4.5-1 (medium)
- tetex-bin 3.0-12 (medium)
- kdegraphics 4:3.5.1-2 (medium)
@@ -1118,6 +1118,7 @@
CVE-2006-0225 (scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands ...)
- openssh <unfixed> (low; bug #349645; bug #352254)
CVE-2006-0224 (Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 ...)
+ {DSA-976-1}
- libast 0.7-1
CVE-2005-4665 (Cross-site scripting (XSS) vulnerability in PunBB 1.2.6 and earlier ...)
NOT-FOR-US: PunBB
@@ -1952,6 +1953,7 @@
- libjpeg6b 6b-11
[woody] - libjpeg6b <not-affected> (Does not include exifautotran)
CVE-2006-0043 (Buffer overflow in the realpath function in nfs-server rpc.mountd, as ...)
+ {DSA-975-1}
- nfs-user-server 2.2beta47-22 (high; bug #350020)
NOTE: nfs-utils (kernel NFS server) is not affected
NOTE: (it uses PATH_MAX for the buffer passed to realpath).
More information about the Secure-testing-commits
mailing list