[Secure-testing-commits] r4807 - data/CVE
Stefan Fritsch
stef-guest at costa.debian.org
Tue Oct 3 19:29:58 UTC 2006
Author: stef-guest
Date: 2006-10-03 19:29:56 +0000 (Tue, 03 Oct 2006)
New Revision: 4807
Modified:
data/CVE/list
Log:
- openssl faulty CVE-2006-2940 patch fixed
- new libgsf issue fixed
- CVE-2006-4980: new python issue fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-10-03 14:54:02 UTC (rev 4806)
+++ data/CVE/list 2006-10-03 19:29:56 UTC (rev 4807)
@@ -1,3 +1,9 @@
+CVE-2006-XXXX [openssl fix for CVE-2006-2940 introduced new security bug]
+ - openssl097 0.9.7k-3
+ - openssl 0.9.8c-3
+ [sarge] - openssl 0.9.7e-3sarge4
+CVE-2006-XXXX [unspecified libgsf security issue (IDEF1622)]
+ - libgsf 1.14.2-1
CVE-2006-5143
RESERVED
CVE-2006-5142
@@ -335,8 +341,10 @@
NOT-FOR-US: Cisco
CVE-2006-4981 (Symantec Sygate NAC allows physically proximate attackers to bypass ...)
NOT-FOR-US: Symantec
-CVE-2006-4980
+CVE-2006-4980 [buffer overrun in repr() for unicode strings]
RESERVED
+ - python2.4 2.4.3-9
+ TODO: check other pythons
CVE-2006-4979 (Direct static code injection vulnerability in cfgphpquiz/install.php ...)
NOT-FOR-US: PhpQuiz
CVE-2006-4978 (Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 ...)
More information about the Secure-testing-commits
mailing list