[Secure-testing-commits] r4458 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Wed Jul 26 21:44:26 UTC 2006
Author: jmm-guest
Date: 2006-07-26 21:44:24 +0000 (Wed, 26 Jul 2006)
New Revision: 4458
Modified:
data/CVE/list
Log:
konqueror dos not in sarge per testing by Alec Berryman and myself
no-dsa for older ssh-krb issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-07-26 20:33:48 UTC (rev 4457)
+++ data/CVE/list 2006-07-26 21:44:24 UTC (rev 4458)
@@ -339,6 +339,7 @@
- armagetron <unfixed> (bug #379062; medium)
CVE-2006-3672 (KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a ...)
- kdebase <unfixed> (bug #378962; low)
+ [sarge] - kdebase <not-affected> (Doesn't trigger a crash on Sarge)
CVE-2006-3671 (Cross-site request forgery (CSRF) vulnerability in the communicate ...)
- hyperestraier 1.3.3-1 (bug #379060; low)
CVE-2006-3670 (Stack-based buffer overflow in Winlpd 1.26 allows remote attackers to ...)
@@ -14020,6 +14021,7 @@
- openssh 1:4.2p1-1 (bug #326065; unimportant)
NOTE: Not enabled in the binary build, see #326065
- openssh-krb5 <unfixed> (bug #327233; medium)
+ [sarge] - openssh-krb5 <no-dsa> (Intended bahaviour, see #327233)
CVE-2005-2797 (OpenSSH 4.0, and other versions before 4.2, does not properly handle ...)
- openssh 1:4.2p1-1 (bug #326065; medium)
CVE-2005-2796 (The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and ...)
More information about the Secure-testing-commits
mailing list