[Secure-testing-commits] r3699 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Mon Mar 27 09:23:30 UTC 2006 

Author: jmm-guest
Date: 2006-03-27 09:23:24 +0000 (Mon, 27 Mar 2006)
New Revision: 3699

Modified:
   data/CVE/list
Log:
nethack issues not for us
bugnums


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-03-27 09:14:22 UTC (rev 3698)
+++ data/CVE/list	2006-03-27 09:23:24 UTC (rev 3699)
@@ -11,7 +11,7 @@
 CVE-2006-1391 (The (a) Quick 'n Easy Web Server before 3.1.1 and (b) Baby ASP Web ...)
 	TODO: check
 CVE-2006-1390 (The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a ...)
-	TODO: check
+	NOT-FOR-US: Shortcoming of Gentoo-specific games packaging
 CVE-2006-1389 (Unspecified vulnerability in swagentd in HP-UX B.11.00, B.11.04, and ...)
 	TODO: check
 CVE-2006-1388 (Unspecified vulnerability in Microsoft Internet Explorer 6.0 allows ...)
@@ -236,9 +236,9 @@
 CVE-2006-1281 (Cross-site scripting (XSS) in member.php in MyBulletinBoard (MyBB) ...)
 	NOT-FOR-US: MyBB
 CVE-2006-1280 (CGI::Session 4.03-1 does not set proper permissions on temporary files ...)
-	- libcgi-session-perl 4.07-1
+	- libcgi-session-perl 4.07-1 (bug #356555)
 CVE-2006-1279 (CGI::Session 4.03-1 allows local users to overwrite arbitrary files ...)
-	- libcgi-session-perl 4.07-1
+	- libcgi-session-perl 4.07-1 (bug #356555)
 CVE-2006-1278 (SQL injection vulnerability in @1 File Store 2006.03.07 allows remote ...)
 	NOT-FOR-US: @1 File Store
 CVE-2006-1277 (Cross-site scripting (XSS) vulnerability in signup.php in @1 File ...)
@@ -276,7 +276,7 @@
 CVE-2006-1261 (Multiple cross-site scripting (XSS) vulnerabilities in ASPPortal 3.00 ...)
 	NOT-FOR-US: ASPPortal
 CVE-2006-1260 (Horde Application Framework 3.0.9 allows remote attackers to read ...)
-	- horde3 <unfixed> (bug filed)
+	- horde3 <unfixed> (bug #358812)
 CVE-2006-1259 (Multiple SQL injection vulnerabilities in Maian Support 1.0 allow ...)
 	NOT-FOR-US: Maian Support
 CVE-2006-1258 (Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows ...)
@@ -3228,7 +3228,7 @@
 	RESERVED
 CVE-2006-0058 (Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows ...)
 	{DSA-1015-1}
-	- sendmail 8.13.6-1 (high)
+	- sendmail 8.13.6-1 (bug #358440; high)
 CVE-2006-0057 (Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers ...)
 	NOT-FOR-US: Windows
 CVE-2006-0056 (Double-free vulnerability in the authentication and authentication ...)

More information about the Secure-testing-commits mailing list