[Secure-testing-commits] r3371 - data/CVE
Joey Hess
joeyh at costa.debian.org
Thu Jan 26 09:14:40 UTC 2006
Author: joeyh
Date: 2006-01-26 09:14:23 +0000 (Thu, 26 Jan 2006)
New Revision: 3371
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-01-26 08:06:00 UTC (rev 3370)
+++ data/CVE/list 2006-01-26 09:14:23 UTC (rev 3371)
@@ -1,3 +1,35 @@
+CVE-2006-0433
+ RESERVED
+CVE-2006-0432 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...)
+ TODO: check
+CVE-2006-0431 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...)
+ TODO: check
+CVE-2006-0430 (Certain configurations of BEA WebLogic Server and WebLogic Express ...)
+ TODO: check
+CVE-2006-0429 (BEA WebLogic Server and WebLogic Express 9.0 causes new security ...)
+ TODO: check
+CVE-2006-0428 (Unspecified vulnerability in BEA WebLogic Portal 8.1 SP3 through SP5, ...)
+ TODO: check
+CVE-2006-0427 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...)
+ TODO: check
+CVE-2006-0426 (BEA WebLogic Server and WebLogic Express 8.1 through SP4, when ...)
+ TODO: check
+CVE-2006-0425 (BEA WebLogic Portal 8.1 through SP4 allows remote attackers to obtain ...)
+ TODO: check
+CVE-2006-0424 (BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through ...)
+ TODO: check
+CVE-2006-0423 (BEA WebLogic Portal 8.1 through SP3 stores the password for the RDBMS ...)
+ TODO: check
+CVE-2006-0422 (Multiple unspecified vulnerabilities in BEA WebLogic Server and ...)
+ TODO: check
+CVE-2006-0421 (By design, BEA WebLogic Server and WebLogic Express 7.0 and 6.1, when ...)
+ TODO: check
+CVE-2006-0420 (BEA WebLogic Server and WebLogic Express 8.1 through SP4 and 7.0 ...)
+ TODO: check
+CVE-2006-0419 (BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 ...)
+ TODO: check
+CVE-2005-4667 (Buffer overflow in UnZip 5.50 and earlier allows local users to ...)
+ TODO: check
CVE-2006-0418 (Eval injection vulnerability in 123 Flash Chat Server 5.0 and 5.1 ...)
TODO: check
CVE-2006-0417 (SQL injection vulnerability in login.php in miniBloggie 1.0 and ...)
@@ -12,7 +44,7 @@
TODO: check
CVE-2006-0412 (SQL injection vulnerability in CyberShop allows remote attackers to ...)
TODO: check
-CVE-2006-0411 (Claroline 1.7.2 uses guessable session cookies (md5 hash of connection ...)
+CVE-2006-0411 (claro_init_local.inc.php in Claroline 1.7.2 uses guessable session ...)
TODO: check
CVE-2006-0410 (SQL injection vulnerability in ADOdb before 4.71, when using ...)
TODO: check
@@ -72,12 +104,12 @@
RESERVED
CVE-2006-0382
RESERVED
-CVE-2006-0381
- RESERVED
-CVE-2006-0380
- RESERVED
-CVE-2006-0379
- RESERVED
+CVE-2006-0381 (A logic error in the IP fragment cache functionality in pf in FreeBSD ...)
+ TODO: check
+CVE-2006-0380 (A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel ...)
+ TODO: check
+CVE-2006-0379 (FreeBSD kernel 5.4-STABLE and 6.0 does not completely initialize a ...)
+ TODO: check
CVE-2006-0378 (Cross-site scripting (XSS) vulnerability in Netrix X-Site Manager ...)
TODO: check
CVE-2006-0377
@@ -195,7 +227,7 @@
TODO: check
CVE-2006-XXXX [mydns remote DoS]
- mydns 1.1.0+pre-3 (medium)
-CVE-2006-0353 (unix_random.c in lsh 2.0.1 leaks file descriptors related to the ...)
+CVE-2006-0353 (unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to ...)
- lsh-utils 2.0.1cdbs-4 (low; bug #349303)
CVE-2006-0283 (Unspecified vulnerability in Oracle Database Server 10.1.0.4.2, ...)
NOT-FOR-US: Oracle
More information about the Secure-testing-commits
mailing list