[Secure-testing-commits] r3561 - data/CVE
Joey Hess
joeyh at costa.debian.org
Mon Mar 6 21:14:31 UTC 2006
Author: joeyh
Date: 2006-03-06 21:14:24 +0000 (Mon, 06 Mar 2006)
New Revision: 3561
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-03-06 20:29:27 UTC (rev 3560)
+++ data/CVE/list 2006-03-06 21:14:24 UTC (rev 3561)
@@ -654,6 +654,7 @@
CVE-2006-0646 (ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain ...)
- binutils <not-affected> (SuSE specific vulnerability)
CVE-2006-0645 (Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS ...)
+ {DSA-986-1 DSA-985-1}
- libtasn1-2 <unfixed> (bug #352182)
- libtasn1-0 <unfixed> (bug #352188)
- gnutls <unfixed>
@@ -1524,7 +1525,7 @@
CVE-2006-0302 (ZyXel P2000W VoIP 802.11b Wireless Phone running firmware WV.00.02 ...)
NOT-FOR-US: ZyXel hardware
CVE-2006-0301 (Heap-based buffer overflow in Splash.cc in xpdf, as used in other ...)
- {DSA-983-1 DSA-982-1 DSA-979-1 DSA-974-1 DSA-972-1 DSA-971-1}
+ {DSA-984-1 DSA-983-1 DSA-982-1 DSA-979-1 DSA-974-1 DSA-972-1 DSA-971-1}
- poppler 0.4.5-1 (medium)
- tetex-bin 3.0-12 (medium)
- kdegraphics 4:3.5.1-2 (medium)
@@ -6179,7 +6180,7 @@
CVE-2005-3194 (Multiple buffer overflows in ALZip 6.12 (Korean), 6.1 (International), ...)
NOT-FOR-US: ALZip
CVE-2005-3193 (Heap-based buffer overflow in the JPXStream::readCodestream function ...)
- {DSA-982-1 DSA-979-1 DSA-961-1 DSA-950-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
+ {DSA-984-1 DSA-982-1 DSA-979-1 DSA-961-1 DSA-950-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
- xpdf 3.01-3 (bug #342281; bug #342337; medium)
- gpdf 2.10.0-1 (bug #342286; medium)
- pdftohtml <not-affected> (Vulnerable xpdf code not contained)
@@ -6206,7 +6207,7 @@
- cupsys 1.1.23-13 (unimportant)
- pdfkit.framework 0.8-4
CVE-2005-3191 (Multiple heap-based buffer overflows in the (1) ...)
- {DSA-983-1 DSA-982-1 DSA-979-1 DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1}
+ {DSA-984-1 DSA-983-1 DSA-982-1 DSA-979-1 DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1}
- xpdf 3.01-3 (bug #342281; bug #342337; medium)
- gpdf 2.10.0-1 (bug #342286; medium)
- pdftohtml 0.36-12 (bug #342289; medium)
@@ -10159,7 +10160,7 @@
NOTE: 2.6.8 and 2.4.27 not affected
- linux-2.6 2.6.12-3 (bug #323039; medium)
CVE-2005-2097 (xpdf and kpdf do not properly validate the "loca" table in PDF files, ...)
- {DSA-936-1 DSA-780-1 DTSA-28-1}
+ {DSA-984-1 DSA-936-1 DSA-780-1 DTSA-28-1}
- kdegraphics 4:3.4.2-1 (bug #322458; low)
- xpdf 3.00-15 (bug #322462; low)
[woody] - tetex-bin <not-affected> (pdftex doesn't include or use the vulnerable code)
More information about the Secure-testing-commits
mailing list