[Secure-testing-commits] r4212 - data/CVE
Alec Berryman
alec-guest at costa.debian.org
Wed Jun 14 21:53:01 UTC 2006
Author: alec-guest
Date: 2006-06-14 21:52:59 +0000 (Wed, 14 Jun 2006)
New Revision: 4212
Modified:
data/CVE/list
Log:
* CVE-2006-3005: libjpeg62 is not affected
* CVE-2006-3005: libjpeg is affected (low)
* CVE-2006-2997: zope-zms is affected (low)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-06-14 21:40:28 UTC (rev 4211)
+++ data/CVE/list 2006-06-14 21:52:59 UTC (rev 4212)
@@ -9,7 +9,8 @@
CVE-2006-3006 (Cross-site scripting (XSS) vulnerability in iFoto 0.20, and possibly ...)
NOT-FOR-US: iFoto
CVE-2006-3005 (The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is ...)
- TODO: check
+ - libjpeg62 <not-affected> (--max-mem is set during configure)
+ - libjpeg-mmx <unfixed> (bug filed; low)
CVE-2006-3004 (Multiple cross-site scripting (XSS) vulnerabilities in Ez Ringtone ...)
NOT-FOR-US: Ez Ringtone
CVE-2006-3003 (details.php in Easy Ad-Manager allows remote attackers to obtain the ...)
@@ -25,7 +26,7 @@
CVE-2006-2998 (PHP remote file inclusion vulnerability in board/post.php in free ...)
NOT-FOR-US: not packaged for Debian
CVE-2006-2997 (Cross-site scripting (XSS) vulnerability in ZMS 2.9 and earlier, when ...)
- TODO: check
+ - zope-zms <unfixed> (bug filed; low)
CVE-2006-2996 (PHP remote file inclusion vulnerability in inc/design.inc.php in ...)
TODO: check
CVE-2006-2995 (Multiple PHP remote file inclusion vulnerabilities in WebprojectDB ...)
More information about the Secure-testing-commits
mailing list