[Secure-testing-commits] r4446 - data/CVE

Joey Hess joeyh at costa.debian.org
Sun Jul 23 09:14:22 UTC 2006 

Author: joeyh
Date: 2006-07-23 09:14:20 +0000 (Sun, 23 Jul 2006)
New Revision: 4446

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-23 01:21:51 UTC (rev 4445)
+++ data/CVE/list	2006-07-23 09:14:20 UTC (rev 4446)
@@ -728,6 +728,7 @@
 CVE-2006-3380 (Algorithmic complexity vulnerability in FreeStyle Wiki before 3.6.2 ...)
 	NOT-FOR-US: FreeStyle Wiki
 CVE-2006-3379 (Algorithmic complexity vulnerability in Hiki Wiki 0.6.0 through 0.6.5 ...)
+	{DSA-1119}
 	- hiki 0.8.6-1 (bug #378059; low)
 CVE-2006-3378 (passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called ...)
 	TODO: check
@@ -793,6 +794,7 @@
 	- zope2.8 2.8.7-2 (bug #377277; medium)
 	- zope2.9 2.9.3-3 (bug #377286; medium)
 CVE-2006-3404 (Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c ...)
+	{DSA-1116}
 	- gimp 2.2.11-3.1 (bug #377049; medium)
 CVE-2006-3350
 	RESERVED
@@ -1724,6 +1726,7 @@
 CVE-2006-2907
 	RESERVED
 CVE-2006-2906 (The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas ...)
+	{DSA-1117}
 	- libgd2 2.0.33-5 (bug #372912; low)
 CVE-2006-2905 (Partial Links 1.2.2 allows remote attackers to obtain sensitive ...)
 	NOT-FOR-US: Partial Links
@@ -1997,6 +2000,7 @@
 CVE-2006-2788 (Double-free vulnerability in the getRawDER function for nsIX509Cert in ...)
 	TODO: check
 CVE-2006-2787 (EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-31
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-firefox <unfixed> (medium)
@@ -2005,6 +2009,7 @@
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2786 (HTTP response smuggling vulnerability in Mozilla Firefox and ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-33
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-firefox <unfixed> (medium)
@@ -2013,18 +2018,21 @@
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2785 (Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-34
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-firefox <unfixed> (medium)
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2784 (The PLUGINSPAGE functionality in Mozilla Firefox before 1.5.0.4 allows ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-36
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-firefox <unfixed> (medium)
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2783 (Mozilla Firefox and Thunderbird before 1.5.0.4 strips the Unicode ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-42
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-firefox <unfixed> (medium)
@@ -2033,18 +2041,21 @@
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2782 (Firefox 1.5.0.2 does not fix all test cases associated with ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-41
 	- firefox 1.5.dfsg+1.5.0.4-1 (medium)
 	[sarge] - mozilla-thunderbird <unfixed> (medium)
 	- mozilla <unfixed> (medium)
 	- xulruner 1.8.0.4-1 (medium)
 CVE-2006-2781 (Double-free vulnerability in Mozilla Thunderbird before 1.5.0.4 and ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-40
 	- thunderbird 1.5.0.4-1 (high)
 	[sarge] - mozilla-thunderbird <unfixed> (high)
 	- mozilla <unfixed> (high)
 	- xulruner <unfixed> (high)
 CVE-2006-2780 (Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-32
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
@@ -2053,6 +2064,7 @@
 	- mozilla <unfixed> (high)
 	- xulruner 1.8.0.4-1 (high)
 CVE-2006-2779 (Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-32
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
@@ -2061,6 +2073,7 @@
 	- mozilla <unfixed> (high)
 	- xulruner <unfixed> (high)
 CVE-2006-2778 (The crypto.signText function in Mozilla Firefox and Thunderbird before ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-38
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
@@ -2069,12 +2082,14 @@
 	- mozilla <unfixed> (high)
 	- xulruner 1.8.0.4-1 (high)
 CVE-2006-2777 (Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-43
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
 	- mozilla <unfixed> (high)
 	- xulruner <unfixed> (high)
 CVE-2006-2776 (Certain privileged UI code in Mozilla Firefox and Thunderbird before ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-37
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
@@ -2083,6 +2098,7 @@
 	- mozilla <unfixed> (high)
 	- xulruner 1.8.0.4-1 (high)
 CVE-2006-2775 (Mozilla Firefox and Thunderbird before 1.5.0.4 associates XUL ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-35
 	- firefox 1.5.dfsg+1.5.0.4-1 (high)
 	[sarge] - mozilla-firefox <unfixed> (high)
@@ -3950,6 +3966,7 @@
 CVE-2006-1943 (Multiple cross-site scripting (XSS) vulnerabilities in Smarter Scripts ...)
 	NOT-FOR-US: Smarter Scripts IntelliLink Pro
 CVE-2006-1942 (Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, ...)
+	{DSA-1118}
 	NOTE: MFSA-2006-39
 	- firefox 1.5.dfsg+1.5.0.4-1 (low)
 	[sarge] - mozilla-firefox <unfixed> (low)

More information about the Secure-testing-commits mailing list