[Secure-testing-commits] r4902 - data/CVE

Stefan Fritsch stef-guest at alioth.debian.org
Tue Oct 31 17:41:40 UTC 2006 

Author: stef-guest
Date: 2006-10-31 18:41:39 +0100 (Tue, 31 Oct 2006)
New Revision: 4902

Modified:
   data/CVE/list
Log:
- torrentflux fixed
- ingo1 fixed
- wims fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-10-31 08:14:26 UTC (rev 4901)
+++ data/CVE/list	2006-10-31 17:41:39 UTC (rev 4902)
@@ -3,7 +3,7 @@
 CVE-2006-5610 (PHP remote file inclusion vulnerability in player/includes/common.php ...)
 	TODO: check
 CVE-2006-5609 (Directory traversal vulnerability in dir.php in TorrentFlux 2.1 allows ...)
-	TODO: check
+	- torrentflux 2.1-5 (bug #395930; medium)
 CVE-2006-5608 (SQL injection vulnerability in Extended Tracker (xtracker) 4.7 before ...)
 	TODO: check
 CVE-2006-5607 (Directory traversal vulnerability in /cgi-bin/webcm in INCA IM-204 ...)
@@ -334,11 +334,11 @@
 CVE-2006-5452 (Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX ...)
 	NOT-FOR-US: HP Tru64
 CVE-2006-5451 (Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.1 ...)
-	- torrentflux <unfixed> (bug #395099; low)
+	- torrentflux 2.1-5 (bug #395099; low)
 CVE-2006-5450 (SQL injection vulnerability in index.asp in Kinesis Interactive Cinema ...)
 	NOT-FOR-US: Kinesis Interactive Cinema System (KICS) CMS
 CVE-2006-5449 (procmail in Ingo H3 before 1.1.2 Horde module allows remote ...)
-	- ingo1 <unfixed> (bug #396099)
+	- ingo1 1.1.2-1 (bug #396099)
 CVE-2006-5448 (The drmstor.dll ActiveX object in Microsoft Windows Digital Rights ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-5447 (Cross-site scripting (XSS) vulnerability in index.php in DEV Web ...)
@@ -350,7 +350,7 @@
 CVE-2006-5444 (Integer overflow in the get_input function in the Skinny channel ...)
 	- asterisk 1:1.2.13~dfsg-1 (medium; bug #395080)
 CVE-2006-5443 (Unspecified vulnerability in XIAO Gang WWW Interactive Mathematics ...)
-	- wims <unfixed> (bug #395102)
+	- wims 3.60-1 (bug #395102)
 CVE-2006-5442 (ViewVC 1.0.2 and earlier does not specify a charset in its HTTP ...)
 	TODO: check
 CVE-2006-5441 (PHP remote file inclusion vulnerability in adminfoot.php in Comdev Web ...)

More information about the Secure-testing-commits mailing list