[Secure-testing-commits] r4970 - data/CVE

Wed Nov 15 22:59:20 CET 2006

Author: jmm-guest
Date: 2006-11-15 22:59:18 +0100 (Wed, 15 Nov 2006)
New Revision: 4970

Modified:
   data/CVE/list
Log:
no-dsa for minor issues


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-11-15 21:53:40 UTC (rev 4969)
+++ data/CVE/list	2006-11-15 21:59:18 UTC (rev 4970)
@@ -186,13 +186,15 @@
 CVE-2006-5795 (Multiple PHP remote file inclusion vulnerabilities in OpenEMR 2.8.1 ...)
 	NOT-FOR-US: OpenEMR
 CVE-2006-5794 (Unspecified vulnerability in the sshd Privilege Separation Monitor in ...)
-	- openssh <unfixed> (low)
+	- openssh <unfixed> (unimportant)
+	NOTE: Not a direct vulnerability
 CVE-2006-5793
 	RESERVED
 CVE-2006-XXXX [obexpushd arbitrary command execution]
 	- obexpushd 0.4+svn10-1 (bug #397297; medium)
 CVE-2006-XXXX [motion insecure tempfile creation]
 	- motion 3.2.3-2 (bug #393846; low)
+	[sarge] - motion <no-dsa> (Minor issue)
 CVE-2006-5792 (Unspecified vulnerability in XLink Omni-NFS Enterprise allows remote ...)
 	NOT-FOR-US: XLink Omni-NFS Enterprise
 CVE-2006-5791 (Multiple cross-site scripting (XSS) vulnerabilities in elogd.c in ELOG ...)
@@ -32417,6 +32419,7 @@
 CVE-2004-0175 (Directory traversal vulnerability in scp for OpenSSH before 3.4p1 ...)
 	{CVE-2000-0992}
 	- openssh 1:3.9p1-1 (low; bug #270770)
+	[sarge] - openssh <no-dsa> (Minor issue)
 	NOTE: The directory traversal part has been fixed in OpenSSH 3.9p1.
 	NOTE: The "SUID/SGID across trust boundaries" issue remains, but is
 	NOTE: largely theoretic.  This is a rediscovery of CVE-2000-0992.
@@ -39417,6 +39420,7 @@
 CVE-2000-0992 (Directory traversal vulnerability in scp in sshd 1.2.xx allows a ...)
 	{CVE-2004-0175}
 	- openssh 1:3.9p1-1 (low; bug #270770)
+	[sarge] - openssh <no-dsa> (Minor issue)
 	NOTE: Rediscoved as CVE-2004-0175, see there.
 CVE-2000-0991 (Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ...)
 	NOT-FOR-US: Microsoft


