[Secure-testing-commits] r3212 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Tue Jan 3 00:20:58 UTC 2006


Author: jmm-guest
Date: 2006-01-03 00:20:49 +0000 (Tue, 03 Jan 2006)
New Revision: 3212

Modified:
   data/CVE/list
Log:
kernel update
an older bug from the BTS


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-01-02 23:23:58 UTC (rev 3211)
+++ data/CVE/list	2006-01-03 00:20:49 UTC (rev 3212)
@@ -1,3 +1,5 @@
+CVE-2005-XXXX [xshisen follows symlinks for shared gid games files]
+	- xshisen 1.51-1-1.2 (bug #291613)
 CVE-2006-0062 [Potential xlockmore bypass]
 	RESERVED
 	- xlockmore 1:5.13-2.1 (bug #309760)
@@ -18529,7 +18531,8 @@
 CVE-2004-0134 (cpr (libcpr) in SGI IRIX before 6.5.25 allows local users to gain ...)
 	NOT-FOR-US: IRIX
 CVE-2004-0133 (The XFS file system code in Linux 2.4.x has an information leak in ...)
-	NOTE: fixed in 2.4.26-pre2
+	- kernel-source-2.4.27 <not-affected> (Fixed before upload into archive; 2.4.26-rc2)
+	TODO: Check 2.6
 CVE-2004-0132 (Multiple PHP remote code injection vulnerabilities in ezContents 2.0.2 ...)
 	NOT-FOR-US: ezContents
 CVE-2004-0130 (login.php in phpGedView 2.65 and earlier allows remote attackers to ...)




More information about the Secure-testing-commits mailing list