[Secure-testing-commits] r4416 - in data: CVE DSA

Alec Berryman alec-guest at costa.debian.org
Wed Jul 19 23:22:55 UTC 2006 

Author: alec-guest
Date: 2006-07-19 23:22:44 +0000 (Wed, 19 Jul 2006)
New Revision: 4416

Modified:
   data/CVE/list
   data/DSA/list
Log:
* DSA-1112 (mysql-dfsg-4.1)
* DSA-1113 (zope2.7)
* CVE-2006-1577 (mantis): fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-19 21:14:44 UTC (rev 4415)
+++ data/CVE/list	2006-07-19 23:22:44 UTC (rev 4416)
@@ -755,7 +755,7 @@
 CVE-2006-XXXX [trac: reStructuredText breach of privacy and denial of service]
 	- trac 0.9.6-1
 CVE-2006-3458 (Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does ...)
-	- zope2.7 <unfixed> (bug #377285; medium)
+	- zope2.7 <removed> (bug #377285; medium)
 	- zope2.8 2.8.7-2 (bug #377277; medium)
 	- zope2.9 2.9.3-3 (bug #377286; medium)
 CVE-2006-3404 (Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c ...)
@@ -4902,7 +4902,7 @@
 	NOT-FOR-US: Keystone Digital Library Suite 
 CVE-2006-1577 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	[woody] - mantis <not-affected> (Vulnerable code not present)
-	- mantis <unfixed> (bug #361138)
+	- mantis 0.19.4-3.1 (bug #361138)
 CVE-2006-1576 (Direct static code injection vulnerability in QLnews 1.2 allows remote ...)
 	NOT-FOR-US: QLnews
 CVE-2006-1575 (Multiple cross-site scripting (XSS) vulnerabilities in news.php in ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-07-19 21:14:44 UTC (rev 4415)
+++ data/DSA/list	2006-07-19 23:22:44 UTC (rev 4416)
@@ -1,3 +1,9 @@
+[18 Jul 2006] DSA 1113 zope2.7 - programming error
+        {CVE-2006-3458}
+        [sarge] - zope2.7 2.7.5-2sarge2
+[18 Jul 2006] DSA-1112 mysql-dfsg-4.1 - several vulnerabilities
+        {CVE-2006-3081 CVE-2006-3469}
+        [sarge] - mysql-dfsg-4.1 4.1.11a-4sarge5
 [16 Jul 2006] DSA-1111 kernel-source-2.6.8 - race condition
         {CVE-2006-3626}
         [sarge] - kernel-source-2.6.8 2.6.8-16sarge4

More information about the Secure-testing-commits mailing list