[Secure-testing-commits] r4234 - data/CVE

Joey Hess joeyh at costa.debian.org
Thu Jun 15 09:14:31 UTC 2006 

Author: joeyh
Date: 2006-06-15 09:14:28 +0000 (Thu, 15 Jun 2006)
New Revision: 4234

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-06-15 08:48:12 UTC (rev 4233)
+++ data/CVE/list	2006-06-15 09:14:28 UTC (rev 4234)
@@ -1673,12 +1673,15 @@
 CVE-2006-2275 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ...)
 	- linux-2.6 2.6.16-13
 CVE-2006-2274 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-2273 (The InstallProduct routine in the Verisign VUpdater.Install (aka ...)
 	NOT-FOR-US: Verisign
 CVE-2006-2272 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-2271 (The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2005-4798 (Buffer overflow in NFS readlink handling in the Linux Kernel 2.4 up to ...)
 	- linux-2.6 <not-affected>
@@ -1855,6 +1858,7 @@
 	RESERVED
 CVE-2006-2195 [horde XSS]
 	RESERVED
+	{DSA-1099-1 DSA-1098-1}
 	- horde3 3.1.1-3
 CVE-2006-2194
 	RESERVED
@@ -2626,6 +2630,7 @@
 CVE-2006-1865 (Beagle before 0.2.5 can produce certain insecure command lines to ...)
 	- beagle 0.2.6-2 (bug #365371; medium)
 CVE-2006-1864 (Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-1863 (Directory traversal vulnerability in CIFS in Linux 2.6.16 and earlier ...)
 	- linux-2.6 2.6.16-10
@@ -2639,8 +2644,10 @@
 CVE-2006-1859 (Memory leak in __setlease in fs/locks.c in Linux kernel before ...)
 	- linux-2.6 <unfixed>
 CVE-2006-1858 (SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-1857 (Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-1856 (Certain modifications to the Linux kernel 2.6.16 and earlier do not ...)
 	TODO: check
@@ -3576,8 +3583,10 @@
 CVE-2006-1526 (Buffer overflow in the X render (Xrender) extension in X.org X server ...)
 	- xorg-server 1:1.0.2-8
 CVE-2006-1525 (ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-9
 CVE-2006-1524 (madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-8
 CVE-2006-1523 (The __group_complete_signal function in the RCU signal handling ...)
 	- linux-2.6 2.6.16-7
@@ -3955,6 +3964,7 @@
 CVE-2006-1369 (Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) ...)
 	NOT-FOR-US: Invision Power Board
 CVE-2006-1368 (Buffer overflow in the USB Gadget RNDIS implementation in the Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-1
 CVE-2006-1367 (The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly the ...)
 	NOT-FOR-US: Motorola hardware
@@ -4006,6 +4016,7 @@
 CVE-2006-1344 (Cross-site scripting (XSS) vulnerability in VeriSign haydn.exe, as ...)
 	NOT-FOR-US: VeriSign haydn.exe
 CVE-2006-1343 (net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, ...)
+	{DSA-1097-1}
 	- linux-2.6 <unfixed>
 CVE-2006-1342 (net/ipv4/af_inet.c in Linux kernel 2.4 does not clear ...)
 	- linux-2.6 <unfixed>
@@ -4241,6 +4252,7 @@
 CVE-2006-1243 (Directory traversal vulnerability in install05.php in Simple PHP Blog ...)
 	NOT-FOR-US: Simple PHP Blog 
 CVE-2006-1242 (The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-4
 CVE-2006-1241 (Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) ...)
 	- firebird2 <not-affected> (Not setuid in Debian)
@@ -4650,6 +4662,7 @@
 	{DSA-1040-1}
 	- gdm 2.14.4-1
 CVE-2006-1056 (The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-9
 	- kfreebsd-source-5.4 5.4-17
 	- xen-3.0 3.0.2+hg9656-1
@@ -5355,8 +5368,10 @@
 CVE-2006-0743 (Format string vulnerability in LocalSyslogAppender in Apache log4net ...)
 	NOT-FOR-US: Log4Net
 CVE-2006-0742 (The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.15-8
 CVE-2006-0741 (Linux kernel before 2.6.15.5, when running on Intel processors, allows ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.15-8
 CVE-2006-0740
 	RESERVED
@@ -7525,8 +7540,10 @@
 CVE-2006-0040 (GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a ...)
 	- evolution <unfixed>
 CVE-2006-0039 (Race condition in the do_add_counters function in netfilter for Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-0038 (Integer overflow in the do_replace function in netfilter for Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-1
 CVE-2006-0037 (ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in ...)
 	- linux-2.6 2.6.15-3

More information about the Secure-testing-commits mailing list