[Secure-testing-commits] r4954 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sat Nov 11 21:14:43 CET 2006
Author: joeyh
Date: 2006-11-11 21:14:42 +0100 (Sat, 11 Nov 2006)
New Revision: 4954
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-11-11 14:12:03 UTC (rev 4953)
+++ data/CVE/list 2006-11-11 20:14:42 UTC (rev 4954)
@@ -758,6 +758,7 @@
- bugzilla 2.22.1-1 (bug #395094; low)
[sarge] - bugzilla <not-affected> (Vulnerable code not present)
CVE-2006-5453 (Multiple cross-site scripting (XSS) vulnerabilities in Bugzilla 2.18.x ...)
+ {DSA-1208-1}
- bugzilla 2.22.1-1 (bug #395094; low)
CVE-2006-5452 (Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX ...)
NOT-FOR-US: HP Tru64
@@ -8697,6 +8698,7 @@
CVE-2006-1946 (Multiple cross-site scripting (XSS) vulnerabilities in Visale 1.0 and ...)
NOT-FOR-US: Visale
CVE-2006-1945 (Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.5 ...)
+ {DSA-1075-1}
- awstats 6.5-2 (bug #364443; medium)
NOTE: this might be the same core issue as CVE-2005-2732
CVE-2006-1944 (Multiple cross-site scripting (XSS) vulnerabilities in SibSoft ...)
@@ -13868,6 +13870,7 @@
CVE-2005-4475 (Cross-site scripting (XSS) vulnerability in OpenCms 6.0.3 and earlier ...)
NOT-FOR-US: OpenCms
CVE-2005-4534 (The shadow database feature (syncshadowdb) in Bugzilla 2.9 through ...)
+ {DSA-1208-1}
- bugzilla 2.18 (bug #329387; low)
NOTE: The vulnerable script has been removed in the 2.18 upstream release
CVE-2005-XXXX [Insecure tempfile in libjpeg6b's exifautotran]
More information about the Secure-testing-commits
mailing list