[Secure-testing-commits] r5473 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Sun Feb 18 18:36:03 UTC 2007
Author: stef-guest
Date: 2007-02-18 19:36:01 +0100 (Sun, 18 Feb 2007)
New Revision: 5473
Modified:
data/CVE/list
Log:
- new isdnutils/asterisk-chan-capi/linux-2.6 issue
- smb4k 0.8.0-1 fixes CVE-2007-0474
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-02-18 17:09:26 UTC (rev 5472)
+++ data/CVE/list 2007-02-18 18:36:01 UTC (rev 5473)
@@ -1,3 +1,7 @@
+CVE-2007-XXXX [capi_{cmsg,message}2str not thread-safe; vulnerable to buffer overflow]
+ - isdnutils <unfixed> (bug #408530)
+ - asterisk-chan-capi <unfixed> (bug #411293)
+ - linux-2.6 <unfixed> (bug #411294)
CVE-2007-0981 (Mozilla based browsers allows remote attackers to bypass the same ...)
- iceweasel <unfixed> (bug #411192; high)
- xulrunner <unfixed> (high)
@@ -1224,7 +1228,7 @@
CVE-2007-0475 (Multiple stack-based buffer overflows in utilities/smb4k_*.cpp in ...)
- smb4k 0.8.0-1 (low)
CVE-2007-0474 (Smb4K before 0.8.0 allow local users, when present on the Smb4K ...)
- - smb4k <unfixed> (low)
+ - smb4k 0.8.0-1 (low)
CVE-2007-0473 (The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 ...)
- smb4k 0.8.0-1 (low)
CVE-2007-0472 (Multiple race conditions in Smb4K before 0.8.0 allow local users to ...)
More information about the Secure-testing-commits
mailing list