[Secure-testing-commits] r4749 - data/CVE

[Stefan Fritsch]

Author: stef-guest
Date: 2006-09-20 18:48:06 +0000 (Wed, 20 Sep 2006)
New Revision: 4749

Modified:
   data/CVE/list
Log:
- new gzip issues fixed
- firefox-sage fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-09-20 17:53:13 UTC (rev 4748)
+++ data/CVE/list	2006-09-20 18:48:06 UTC (rev 4749)
@@ -384,9 +384,9 @@
 CVE-2006-4713 (PHP remote file inclusion vulnerability in config.php in PSYWERKS PUMA ...)
 	NOT-FOR-US: PSYWERKS PUMA
 CVE-2006-4712 (Multiple cross-site scripting (XSS) vulnerabilities in Sage 1.3.6 ...)
-	- firefox-sage <unfixed> (bug #388149; medium)
+	- firefox-sage 1.3.6-3 (bug #388149; medium)
 CVE-2006-4711 (Multiple cross-site scripting (XSS) vulnerabilities in Sage allow ...)
-	- firefox-sage <unfixed> (bug #388149; medium)
+	- firefox-sage 1.3.6-3 (bug #388149; medium)
 CVE-2006-4710 (Multiple cross-site scripting (XSS) vulnerabilities in NewsGator ...)
 	TODO: check
 CVE-2006-4709 (SQL injection vulnerability in topic.php in Vikingboard 0.1b allows ...)
@@ -1241,15 +1241,15 @@
 	- openssl097 0.9.7i-2 (medium)
 	- openssl096 <removed>
 CVE-2006-4338 (unlzh.c in the LHZ component in gzip 1.3.5 allows context-dependent ...)
-	TODO: check
+	- gzip 1.3.5-15 (medium)
 CVE-2006-4337 (Buffer overflow in the make_table function in the LHZ component in ...)
-	TODO: check
+	- gzip 1.3.5-15 (high)
 CVE-2006-4336 (Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows ...)
-	TODO: check
+	- gzip 1.3.5-15 (high)
 CVE-2006-4335 (Array index error in the make_table function in unlzh.c in the LZH ...)
-	TODO: check
+	- gzip 1.3.5-15 (high)
 CVE-2006-4334 (Unspecified vulnerability in gzip 1.3.5 allows context-dependent ...)
-	TODO: check
+	- gzip 1.3.5-15 (high)
 CVE-2006-4333 (The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows ...)
 	{DSA-1171}
 	- wireshark 0.99.2-5.1 (low; bug #384529)