[Secure-testing-commits] r4780 - data/CVE

Joey Hess joeyh at costa.debian.org
Fri Sep 29 09:14:34 UTC 2006 

Author: joeyh
Date: 2006-09-29 09:14:31 +0000 (Fri, 29 Sep 2006)
New Revision: 4780

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-09-28 21:15:54 UTC (rev 4779)
+++ data/CVE/list	2006-09-29 09:14:31 UTC (rev 4780)
@@ -1,3 +1,5 @@
+CVE-2006-5072
+	RESERVED
 CVE-2006-5071 (Multiple cross-site scripting (XSS) vulnerabilities in eyeOS before ...)
 	TODO: check
 CVE-2006-5070 (PHP remote file inclusion vulnerability in ...)
@@ -1575,8 +1577,7 @@
 	- asterisk 1:1.2.11.dfsg-1 (medium; bug #385060)
 CVE-2006-4344 (CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) ...)
 	NOT-FOR-US: CGI-Rescue Mail F/W System
-CVE-2006-4343 [openssl sslv2 client crash]
-	RESERVED
+CVE-2006-4343 (Unspecified vulnerability in the SSLv2 client code in OpenSSL 0.9.7 ...)
 	- openssl 0.9.8c-2
 	- openssl097 0.9.7k-2
 	- openssl096 <removed>
@@ -2996,8 +2997,7 @@
 CVE-2006-3739 (Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X ...)
 	- xfree86 <removed>
 	- libxfont 1:1.2.2-1
-CVE-2006-3738 [openssl buffer overflow]
-	RESERVED
+CVE-2006-3738 (Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL ...)
 	- openssl 0.9.8c-2
 	- openssl097 0.9.7k-2
 	- openssl096 <removed>
@@ -4721,8 +4721,7 @@
 	- twiki <not-affected> (Debian's version is old and does not include affected file)
 CVE-2006-2941 (Mailman before 2.1.9rc1 allows remote attackers to cause a denial of ...)
 	- mailman 1:2.1.8-3
-CVE-2006-2940 [openssl DoS]
-	RESERVED
+CVE-2006-2940 (OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions ...)
 	- openssl 0.9.8c-2
 	- openssl097 0.9.7k-2
 	- openssl096 <removed>
@@ -4730,8 +4729,7 @@
 	RESERVED
 CVE-2006-2938
 	RESERVED
-CVE-2006-2937 [openssl DoS]
-	RESERVED
+CVE-2006-2937 (OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote ...)
 	- openssl 0.9.8c-2
 	- openssl097 0.9.7k-2
 	- openssl096 <not-affected>

More information about the Secure-testing-commits mailing list