[Secure-testing-commits] r5446 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Mon Feb 12 21:56:04 UTC 2007
Author: stef-guest
Date: 2007-02-12 22:56:00 +0100 (Mon, 12 Feb 2007)
New Revision: 5446
Modified:
data/CVE/list
Log:
- new dokuwiki issue fixed
- rar+unrar-nonfree fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-02-12 21:17:29 UTC (rev 5445)
+++ data/CVE/list 2007-02-12 21:56:00 UTC (rev 5446)
@@ -1,3 +1,5 @@
+CVE-2007-XXXX [dokuwiki conf directory accessible by web users]
+ - dokuwiki 0.0.20061106-3 (bug #410557)
CVE-2007-0870 (Unspecified vulnerability in Microsoft Word 2000 allows remote ...)
TODO: check
CVE-2007-0869 (Cross-site scripting (XSS) vulnerability in the Attachment Manager ...)
@@ -58,10 +60,10 @@
CVE-2007-0856 (TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module ...)
NOT-FOR-US: Trend Micro Anti-Rootkit Common Module
CVE-2007-0855 (Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR ...)
- - rar <unfixed> (high; bug #410582)
+ - rar 1:3.7b1-1 (high; bug #410582)
[sarge] - rar <no-dsa> (Non-free)
[etch] - rar <no-dsa> (Non-free)
- - unrar-nonfree <unfixed> (high; bug #410580)
+ - unrar-nonfree 1:3.7.3-1 (high; bug #410580)
[sarge] - unrar-nonfree <no-dsa> (Non-free)
[etch] - unrar-nonfree <no-dsa> (Non-free)
NOTE: amavid-new automatically uses "rar -p-" or "unrar -p-",
More information about the Secure-testing-commits
mailing list