[Secure-testing-commits] r3643 - in data: . CVE

Micah Anderson micah at costa.debian.org
Mon Mar 20 00:21:37 UTC 2006 

Author: micah
Date: 2006-03-20 00:21:31 +0000 (Mon, 20 Mar 2006)
New Revision: 3643

Modified:
   data/CVE/list
   data/ID_pending
Log:
Sent some pending IDs to Mitre and updated a version number


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-03-19 10:39:57 UTC (rev 3642)
+++ data/CVE/list	2006-03-20 00:21:31 UTC (rev 3643)
@@ -665,7 +665,7 @@
 	- rssh 2.3.0-1.1 (bug #346322; low)
 	[sarge] - rssh <not-affected> (Problem has been introduced in 2.3.0)
 CVE-2006-XXXX [buffer overflow in netcat example]
-	- netcat 1.10-30 (bug #352369; unimportant)
+	- netcat 1.10-31 (bug #352369; unimportant)
 	NOTE: Only an example, not in the binary package
 CVE-2006-XXXX [webcheck XSS]
 	- webcheck 1.9.6

Modified: data/ID_pending
===================================================================
--- data/ID_pending	2006-03-19 10:39:57 UTC (rev 3642)
+++ data/ID_pending	2006-03-20 00:21:31 UTC (rev 3643)
@@ -1,18 +1,24 @@
 CVE-2006-XXXX [runit local privilege escalation]
 	- runit <unfixed> (bug #356016; medium)
 	[sarge] - runit <not-affected>
+	NOTE: Micah requested CVE March 19, 2006
 CVE-2006-XXXX [minor bypass of rssh sanitising]
 	- rssh <unfixed> (bug #346322; low)
 	[sarge] - rssh <not-affected> (Problem has been introduced in 2.3.0)
+	NOTE: Micah requested CVE March 19, 2006
 CVE-2006-XXXX [buffer overflow in netcat example]
 	- netcat 1.10-30 (bug #352369; unimportant)
 	NOTE: Only an example, not in the binary package
+	NOTE: Already fixed, not worth getting a CVE for?
 CVE-2006-XXXX [webcheck XSS]
 	- webcheck 1.9.6
+	NOTE: Micah requested CVE March 19, 2006
 CVE-2006-XXXX [cherrypy2 information disclosure]
 	- cherrypy2 2.1.1-1 (bug #353542)
+	NOTE: Micah requested CVE March 19, 2006
 CVE-2006-XXXX [sa-exim: deletion of files]
 	- sa-exim <unfixed> (bug #345071)
+	NOTE: Micah requested CVE March 19, 2006
 CVE-2006-XXXX [imagemagick: array index overflow in DisplayImageCommand]
 	- imagemagick 6:6.2.4.5-0.6 (bug #345595)
 CVE-2006-XXXX [imagemagick's display(1) deletes arbitrary files]

More information about the Secure-testing-commits mailing list