[Secure-testing-commits] r6421 - data/CVE

stef-guest at alioth.debian.org stef-guest at alioth.debian.org
Tue Aug 28 21:22:59 UTC 2007 

Author: stef-guest
Date: 2007-08-28 21:22:59 +0000 (Tue, 28 Aug 2007)
New Revision: 6421

Modified:
   data/CVE/list
Log:
new clamav issue already fixed, old clamav issues CVEified

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-08-28 21:21:50 UTC (rev 6420)
+++ data/CVE/list	2007-08-28 21:22:59 UTC (rev 6421)
@@ -49,7 +49,7 @@
 CVE-2007-4561 (Heap-based buffer overflow in the RTSP service in Helix DNA Server ...)
 	TODO: check
 CVE-2007-4560 (clamav-milter in ClamAV before 0.91.2, when run in black hole mode, ...)
-	TODO: check
+	- clamav 0.91.2-1 (high)
 CVE-2007-4559 (Directory traversal vulnerability in the (1) extract and (2) ...)
 	TODO: check
 CVE-2007-4558 (Directory traversal vulnerability in extract.c in star before 1.5a84 ...)
@@ -158,7 +158,8 @@
 CVE-2007-4511 (The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply ...)
 	TODO: check
 CVE-2007-4510 (ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and ...)
-	TODO: check
+	- clamav 0.91.2-1
+	[sarge] - clamav <not-affected> (Vulnerable code not present)
 CVE-2007-4509 (SQL injection vulnerability in index.php in the EventList component ...)
 	TODO: check
 CVE-2007-4508 (Stack-based buffer overflow in Rebellion Asura engine, as used for the ...)
@@ -476,12 +477,6 @@
 	- clamav 0.91.2-1
 	[etch] - clamav <not-affected> (Vulnerable code not present)
 	[sarge] - clamav <not-affected> (Vulnerable code not present)
-CVE-2007-XXXX [clamav NULL deref RTF DoS] 
-	- clamav 0.91.2-1
-	[sarge] - clamav <not-affected> (Vulnerable code not present)
-CVE-2007-XXXX [clamav NULL deref RFC2397 DoS]
-	- clamav 0.91.2-1
-	[sarge] - clamav <not-affected> (Vulnerable code not present)
 CVE-2007-XXXX [pam usb wrongly allows authentication without password in ssh sessions]
 	- libpam-usb 0.4.1-1 (medium)
 	NOTE: see http://sourceforge.net/mailarchive/forum.php?thread_name=7D75703BC8E1C149BF78A1E79AAAB169B8A2E4%40svits28.main.ad.rit.edu&forum_name=pamusb-devel

More information about the Secure-testing-commits mailing list