[Secure-testing-commits] r3700 - in data: . CVE

Micah Anderson micah at costa.debian.org
Mon Mar 27 16:30:22 UTC 2006 

Author: micah
Date: 2006-03-27 16:30:14 +0000 (Mon, 27 Mar 2006)
New Revision: 3700

Modified:
   data/CVE/list
   data/ID_pending
Log:
Requested some IDs for XXX issues, removed cruft
not even worth reporting


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-03-27 09:23:24 UTC (rev 3699)
+++ data/CVE/list	2006-03-27 16:30:14 UTC (rev 3700)
@@ -1001,9 +1001,6 @@
 CVE-2006-1320 (util.c in rssh 2.3.0 in Debian GNU/Linux does not use braces to make a ...)
 	- rssh 2.3.0-1.1 (bug #346322; low)
 	[sarge] - rssh <not-affected> (Problem has been introduced in 2.3.0)
-CVE-2006-XXXX [buffer overflow in netcat example]
-	- netcat 1.10-31 (bug #352369; unimportant)
-	NOTE: Only an example, not in the binary package
 CVE-2006-1321 (Cross-site scripting (XSS) vulnerability in webcheck before 1.9.6 ...)
 	- webcheck 1.9.6
 CVE-2006-0937 (U.N.U. Mailgust 1.9 allows remote attackers to obtain sensitive ...)
@@ -1662,13 +1659,8 @@
 	- libpam-mysql <unfixed> (bug #353589; high)
 CVE-2005-4712 (CRLF injection vulnerability in process_signup.php in PHP Handicapper ...)
 	NOT-FOR-US: Handicapper
-CVE-2006-XXXX [imagemagick's display(1) deletes arbitrary files]
-	- imagemagick 6:6.2.4.5-0.7 (bug #352575; medium)
-	- graphicsmagick <not-affected> (Vulnerable code not present)
-	[woody] - imagemagick <not-affected> (Vulnerable code not present)
-	[sarge] - imagemagick <not-affected> (Vulnerable code not present)
 CVE-2006-XXXX [dpkg-sig: insecure temp file bug]
-	- dpkg-sig <unfixed> (bug #352723; low)
+	- dpkg-sig 0.13 (bug #352723; low)
 	[sarge] - dpkg-sig <no-dsa> (Only affected in debug mode)
 CVE-2006-XXXX [Wordpress XSS]
 	- wordpress 2.0.1-1 (bug #328909)
@@ -3275,8 +3267,6 @@
 	NOT-FOR-US: Juniper
 CVE-2005-4586 (Multiple SQL injection vulnerabilities in PHPSurveyor before 0.991 ...)
 	NOT-FOR-US: PHPSurveyor
-CVE-2005-XXXX [phpbb2 bbcode xss ie-only fixed in 2.0.19]
-	- phpbb2 <not-affected> (Fixed through a more complete fix in previous 2.0.13+1-6sarge1 update)
 CVE-2005-XXXX [snort: DoS in verbose mode]
 	- snort 2.3.3-2 (bug #328134; low)
 	[woody] - snort <no-dsa> (Only exploitable in obscure setups not used in production environments, see #328134)
@@ -4030,10 +4020,6 @@
 	NOT-FOR-US: YaCy
 CVE-2003-1289 (The iBCS2 system call translator for statfs in NetBSD 1.5 through ...)
 	NOT-FOR-US: NetBSD
-CVE-2005-XXXX [SQL Injection in server_privileges.php]
-	- phpmyadmin <unfixed> (bug #343858; unimportant)
-	NOTE: Attack only works for authenticated users and after all "SQL injection" is
-	NOTE: phpmyadmin's primary use case :-)
 CVE-2005-XXXX [rageirc IRC daemon always allows login with empty password]
 	- rageircd <unfixed> (bug #343543; medium)
 CVE-2005-4266 (WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a ...)
@@ -5403,8 +5389,6 @@
 CVE-2005-XXXX [Unspecified new Real/Helix createProcess() issue, no details yet]
 	- helix-player <unfixed> (unknown)
 	NOTE: http://service.real.com/help/faq/security/security111605.html
-CVE-2005-XXXX [maradns risk mitigation against AES side channel attacks by Shamir et al.]
-	- maradns 1.0.35-1 (unimportant)
 CVE-2005-3731 (Unspecified vulnerability in yaSSL before 1.0.6 has unknown impact and ...)
 	NOT-FOR-US: yaSSL 
 CVE-2005-3730 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
@@ -6686,18 +6670,9 @@
 CVE-2005-XXXX [ntop format string vulnerability]
 	- ntop <unfixed> (bug #335996; unimportant)
 	NOTE: Not exploitable
-CVE-2005-XXXX [Firefox IFRAME DoS]
-	- mozilla-firefox <unfixed> (bug #336171; low)
-	- firefox 1.4.99+1.5rc3.dfsg-2 (bug #336171; low)
-	NOTE: Only a DoS attack, see http://bugzilla.mozilla.org/show_bug.cgi?id=303433
 CVE-2005-3341 (DHIS tools DNS package (dhis-tools-dns) before 5.0 allows local users ...)
 	{DSA-928-1}
 	- dhis-tools-dns 5.0-5
-CVE-2005-XXXX [libxaw6: passwords visible in widgets]
-	NOTE: fixed in libxaw7
-	- xorg-x11 <unfixed> (bug #172890; low)
-	- xfree86 <removed>
-	[sarge] - xfree86 <no-dsa>
 CVE-2005-3339 (Mantis before 0.19.3 caches the User ID longer than necessary, which ...)
 	{DSA-905-1}
 	- mantis 0.19.3-0.1 (bug #330682; unknown)
@@ -7272,9 +7247,6 @@
 CVE-2005-3179 (drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs ...)
 	- linux-2.6 2.6.13+2.6.14-rc4-0experimental.1 (medium)
 	- kernel-source-2.4.27 <not-affected>
-CVE-2005-XXXX [Minor DoS vulnerability in msg id parsing of spampd]
-	- spampd 2.30-1 (bug #332259; low)
-	[sarge] - spampd <no-dsa> (Only exploitable to let single messages pass through)
 CVE-2005-3178 (Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow ...)
 	{DSA-859-1 DSA-858-1}
 	- xloadimage 4.1-15 (bug #332524; medium)
@@ -7462,15 +7434,9 @@
 CVE-2005-XXXX [tar's rmt command may have undesired side effects]
 	- tar <unfixed> (bug #290435; low)
 	[sarge] - tar <no-dsa> (Hardly exploitable)
-CVE-2005-XXXX [clamav's VERSION command does not return the currently loaded version]
-	NOTE: no exploit vector, just bad info
-	- clamav <unfixed> (bug #323803; unimportant)
 CVE-2005-XXXX [smbmount doesn't honor gid/uid with kernel 2.4]
 	- kernel-source-2.4.27 <unfixed> (bug #310982; low)
 	NOTE: probably already fixed in testing, wrote for confirmation
-CVE-2004-XXXX [Minor dialog box origin spoofing vulnerability in Konqueror]
-	- kdebase 4:3.3.1-1 (bug #278002; low)
-	TODO: According to http://secunia.com/secunia_research/2004-10/advisory/ Firefox and Mozilla aff. as well
 CVE-2003-XXXX [Incomplete reporting of failed logins in login]
 	- login 1:4.0.3-36 (bug #192849)
 CVE-2004-XXXX [slapd debconfage writes password to world readable file under certain circumstances]

Modified: data/ID_pending
===================================================================
--- data/ID_pending	2006-03-27 09:23:24 UTC (rev 3699)
+++ data/ID_pending	2006-03-27 16:30:14 UTC (rev 3700)
@@ -1,25 +1,22 @@
-CVE-2006-XXXX [buffer overflow in netcat example]
-	- netcat 1.10-30 (bug #352369; unimportant)
-	NOTE: Only an example, not in the binary package
-	NOTE: Already fixed, not worth getting a CVE for?
 CVE-2006-XXXX [imagemagick: array index overflow in DisplayImageCommand]
 	- imagemagick 6:6.2.4.5-0.6 (bug #345595)
-CVE-2006-XXXX [imagemagick's display(1) deletes arbitrary files]
-	- imagemagick 6:6.2.4.5-0.7 (bug #352575; medium)
-	- graphicsmagick <not-affected> (Vulnerable code not present)
-	[woody] - imagemagick <not-affected> (Vulnerable code not present)
-	[sarge] - imagemagick <not-affected> (Vulnerable code not present)
+	NOTE: Requested by Micah March 26, 2006
 CVE-2006-XXXX [dpkg-sig: insecure temp file bug]
-	- dpkg-sig <unfixed> (bug #352723; medium)
+	- dpkg-sig <unfixed> (bug #352723; low)
+	NOTE: not going to request CVE for this, its really quite minor
 CVE-2006-XXXX [Wordpress XSS]
 	- wordpress 2.0.1-1 (bug #328909)
+	NOTE: sent query to maintainer about this issue - Micah
 CVE-2006-XXXX [pioneers meta-server DoS]
 	- pioneers 0.9.55-1 (bug #351986; medium)
 	[sarge] - gnocatan <not-affected> (Not exploitable in Sarge per maintainer)
+	NOTE: Requested by Micah March 26, 2006
 CVE-2006-XXXX [kphone creates world-readable config file with passwords]
 	- kphone <unfixed> (bug #337830; low)
+	NOTE: Requested by Micah March 26, 2006
 CVE-2006-XXXX [knowledgetree information disclosure]
 	- knowledgetree <unfixed> (bug #348306; medium)
+	NOTE: Requested by Micah March 26, 2006
 CVE-2006-XXXX [php5 response splitting]
 	- php5 5.1.2-1 (bug #347894)
 	- php4 <not-affected> (vulnerable code was introduced in PHP5)
@@ -30,8 +27,6 @@
 	- b2evolution 0.9.1b-4 (bug #344000)
 CVE-2005-XXXX [xshisen follows symlinks for shared gid games files]
 	- xshisen 1.51-1-1.2 (bug #291613)
-CVE-2005-XXXX [phpbb2 bbcode xss ie-only fixed in 2.0.19]
-	- phpbb2 <not-affected> (Fixed through a more complete fix in previous 2.0.13+1-6sarge1 update)
 CVE-2005-XXXX [snort: DoS in verbose mode]
 	- snort 2.3.3-2 (bug #328134; low)
 	[woody] - snort <no-dsa> (Only exploitable in obscure setups not used in production environments, see #328134)
@@ -39,10 +34,6 @@
 CVE-2005-XXXX [Insecure tempfile in libjpeg6b's exifautotran]
 	- libjpeg6b 6b-11 (bug #340079; low)
 	[woody] - libjpeg6b <not-affected> (Does not include exifautotran)
-CVE-2005-XXXX [SQL Injection in server_privileges.php]
-	- phpmyadmin <unfixed> (bug #343858; unimportant)
-	NOTE: Attack only works for authenticated users and after all "SQL injection" is
-	NOTE: phpmyadmin's primary use case :-)
 CVE-2005-XXXX [rageirc IRC daemon always allows login with empty password]
 	- rageircd <unfixed> (bug #343543; medium)
 CVE-2003-XXXX [Insecure tempfile in x-face-el]
@@ -51,8 +42,6 @@
 CVE-2005-XXXX [Unspecified new Real/Helix createProcess() issue, no details yet]
 	- helix-player <unfixed> (unknown)
 	NOTE: http://service.real.com/help/faq/security/security111605.html
-CVE-2005-XXXX [maradns risk mitigation against AES side channel attacks by Shamir et al.]
-	- maradns 1.0.35-1 (unimportant)
 CVE-2005-XXXX [unsafe file permissions in vpnc]
 	- vpnc <unfixed> (bug #340105; medium)
 CVE-2005-XXXX [user logout in drupal has no effect]
@@ -65,14 +54,6 @@
 CVE-2005-XXXX [ntop format string vulnerability]
 	- ntop <unfixed> (bug #335996; unimportant)
 	NOTE: Not exploitable
-CVE-2005-XXXX [Firefox IFRAME DoS]
-	- mozilla-firefox <unfixed> (bug #336171; low)
-	- firefox 1.4.99+1.5rc3.dfsg-2 (bug #336171; low)
-	NOTE: Only a DoS attack, see http://bugzilla.mozilla.org/show_bug.cgi?id=303433
-CVE-2005-XXXX [libxaw6: passwords visible in widgets]
-	NOTE: fixed in libxaw7
-	- xorg-x11 <unfixed> (bug #172890; low)
-	- xfree86 <removed>
 CVE-2005-XXXX [kernel: Signedness problems in net/core/filter]
 	- linux-2.6 2.6.12-2
 	[sarge] - kernel-source-2.4.27 <not-affected>
@@ -93,9 +74,6 @@
 	- flexbackup <unfixed> (bug #334350; low)
 CVE-2005-XXXX [xscreensaver does not maintain screen locks during upgrade]
 	- xscreensaver 4.23-2 (bug #334193; low)
-CVE-2005-XXXX [Minor DoS vulnerability in msg id parsing of spampd]
-	- spampd 2.30-1 (bug #332259; low)
-	[sarge] - spampd <no-dsa> (Only exploitable to let single messages pass through)
 CVE-2005-XXXX [Minor local DoS as libldap]
 	- openldap <unfixed> (bug #253838; low)
 	TODO: Check, whether openldap2.2 is affected as well
@@ -107,15 +85,9 @@
 	[woody] - coreutils <no-dsa> (Minor issue, hardly exploitable)
 CVE-2005-XXXX [tar's rmt command may have undesired side effects]
 	- tar <unfixed> (bug #290435; low)
-CVE-2005-XXXX [clamav's VERSION command does not return the currently loaded version]
-	NOTE: no exploit vector, just bad info
-	- clamav <unfixed> (bug #323803; unimportant)
 CVE-2005-XXXX [smbmount doesn't honor gid/uid with kernel 2.4]
 	- kernel-source-2.4.27 <unfixed> (bug #310982; low)
 	NOTE: probably already fixed in testing, wrote for confirmation
-CVE-2004-XXXX [Minor dialog box origin spoofing vulnerability in Konqueror]
-	- kdebase 4:3.3.1-1 (bug #278002; low)
-	TODO: According to http://secunia.com/secunia_research/2004-10/advisory/ Firefox and Mozilla aff. as well
 CVE-2003-XXXX [Incomplete reporting of failed logins in login]
 	- login 1:4.0.3-36 (bug #192849)
 CVE-2004-XXXX [slapd debconfage writes password to world readable file under certain circumstances]

More information about the Secure-testing-commits mailing list