[Secure-testing-commits] r4991 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Nov 21 21:14:44 CET 2006 

Author: joeyh
Date: 2006-11-21 21:14:42 +0100 (Tue, 21 Nov 2006)
New Revision: 4991

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-11-21 19:51:11 UTC (rev 4990)
+++ data/CVE/list	2006-11-21 20:14:42 UTC (rev 4991)
@@ -323,6 +323,7 @@
 CVE-2006-5819 (Verity Ultraseek before 5.7 allows remote attackers to use the server ...)
 	TODO: check
 CVE-2006-5864 (Stack-based buffer overflow in the ps_gettext function in ps.c for GNU ...)
+	{DSA-1214}
 	- gv 1:3.6.2-2 (medium; bug #398292)
 CVE-2006-5818 (Multiple buffer overflows in tunekrnl in IBM Lotus Domino 6.x before ...)
 	NOT-FOR-US: Lotus Domino 
@@ -331,6 +332,7 @@
 CVE-2006-5816 (Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko ...)
 	NOT-FOR-US: Business Card Web Builder
 CVE-2006-5815 (Unspecified vulnerability in ProFTPD allows remote attackers to ...)
+	{DSA-1218}
 	- proftpd-dfsg 1.3.0-13 (bug #399070) 
 	- proftpd <removed>
 CVE-2006-5814 (Unspecified vulnerability in Novell eDirectory allows remote attackers ...)
@@ -2511,14 +2513,17 @@
 CVE-2006-4803 (The Fan-Out Linux and UNIX receiver scripts in Novell Identity Manager ...)
 	NOT-FOR-US: Novell Identity Manager
 CVE-2006-4802 (Format string vulnerability in the Real Time Virus Scan service in ...)
+	{DSA-1216}
 	NOT-FOR-US: Symantec
 CVE-2006-4801 (Race condition in Deja Vu, as used in Roxio Toast Titanium 7 and ...)
 	NOT-FOR-US: Roxio Toast
 CVE-2006-4800 (Multiple buffer overflows in libavcodec in ffmpeg before ...)
+	{DSA-1215}
 	- ffmpeg 0.cvs20060329-1
 	- xine-lib 1.1.2-1
 	NOTE: according to the changelog, libxine (starting from 1.1.2-4) links dynamically against ffmpeg
 CVE-2006-4799 (Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow ...)
+	{DSA-1215}
 	- xine-lib 1.1.2-1 (bug #369876; medium)
 	NOTE: according to the changelog, libxine (starting from 1.1.2-4) links dynamically against ffmpeg
 	TODO: check ffmpeg
@@ -2537,6 +2542,7 @@
 CVE-2004-2665 (Unspecified vulnerability in the Address and Routing Parameter Area ...)
 	NOT-FOR-US: HP-UX
 CVE-2006-5778 (ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir ...)
+	{DSA-1217}
 	- linux-ftpd 0.17-22 (low; bug #384454)
 CVE-2006-XXXX [ejabberd HTML code injection]
 	- ejabberd 1.1.1-8

More information about the Secure-testing-commits mailing list