[Secure-testing-commits] r4726 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Wed Sep 13 20:41:59 UTC 2006 

Author: jmm-guest
Date: 2006-09-13 20:41:57 +0000 (Wed, 13 Sep 2006)
New Revision: 4726

Modified:
   data/CVE/list
Log:
kernel ext/nfs fixed
record some firefox issues from 1.5.0.2 as fixed
ncompress fixed in sid
clamav unimportant


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-09-13 19:28:55 UTC (rev 4725)
+++ data/CVE/list	2006-09-13 20:41:57 UTC (rev 4726)
@@ -2827,7 +2827,7 @@
 	{DSA-1112}
 	- mysql-dfsg-5.0 5.0.22-1
 CVE-2006-3468 (Linux kernel 2.6.x, when using both NFS and EXT3, allows remote ...)
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.17-6
 CVE-2006-3467 (Integer overflow in FreeType before 2.2 allows remote attackers to ...)
 	- freetype 2.2.1-5 (bug #379920; medium)
 	- libxfont 1:1.2.0-2 (medium; bug #383353)
@@ -7420,7 +7420,7 @@
 	NOT-FOR-US: PHP Classifieds
 CVE-2006-1531 (Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -7430,7 +7430,7 @@
 	NOTE: default configuration.
 CVE-2006-1530 (Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -7440,7 +7440,7 @@
 	NOTE: default configuration.
 CVE-2006-1529 (Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2-1 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -8303,7 +8303,7 @@
 	RESERVED
 CVE-2006-1168 (The decompress function in compress42.c in (1) ncompress 4.2.4 and (2) ...)
 	{DSA-1149-1}
-	- ncompress 4.2.4-15sarge2
+	- ncompress 4.2.4-16
 CVE-2006-1167
 	RESERVED
 CVE-2006-1165 (Cross-site scripting (XSS) vulnerability in the mediamanager module in ...)
@@ -15052,7 +15052,7 @@
 CVE-2005-3230 (Multiple interpretation error in unspecified versions of Panda ...)
 	NOT-FOR-US: Panda Antivirus
 CVE-2005-3229 (Multiple interpretation error in unspecified versions of ClamAV ...)
-	- clamav <unfixed> (low)
+	- clamav <unfixed> (unimportant)
 	[sarge] - clamav <no-dsa> (Should rather be fixed in the buggy (fringe) RAR unpackers)
 CVE-2005-3228 (Multiple interpretation error in unspecified versions of Ikarus ...)
 	NOT-FOR-US: Ikarus Antivirus

More information about the Secure-testing-commits mailing list