[Secure-testing-commits] r5206 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Tue Jan 2 23:46:01 CET 2007
Author: stef-guest
Date: 2007-01-02 23:45:58 +0100 (Tue, 02 Jan 2007)
New Revision: 5206
Modified:
data/CVE/list
Log:
- new webcam-server issue fixed
- new libsoup issue fixed
- w3m CVEified
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-01-02 08:14:25 UTC (rev 5205)
+++ data/CVE/list 2007-01-02 22:45:58 UTC (rev 5206)
@@ -1,3 +1,7 @@
+CVE-2007-XXXX [webcam-server unspecified vulnerability]
+ - webcam-server 0.50-2
+CVE-2007-XXXX [libsoup parse_headers_DoS]
+ - libsoup 2.2.98-2 (bug #405197)
CVE-2007-0015 (Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to ...)
TODO: check
CVE-2007-0014
@@ -137,7 +141,8 @@
CVE-2006-6773 (pages/register/register.php in Fishyshoop 0.930 beta allows remote ...)
TODO: check
CVE-2006-6772 (Format string vulnerability in w3m 0.5.1, when run with the dump or ...)
- TODO: check
+ - w3m 0.5.1-5.1 (low; bug #404564)
+ TODO: Check w3mee, is this forked version still needed?
CVE-2006-6771 (Multiple PHP remote file inclusion vulnerabilities in Irokez CMS 0.7.1 ...)
TODO: check
CVE-2006-6770 (Multiple PHP remote file inclusion vulnerabilities in Jinzora Media ...)
@@ -319,9 +324,6 @@
CVE-2006-6749 (Buffer overflow in the parse_expression function in parse_config in ...)
- openser 1.1.0-8 (medium; bug #404591)
NOTE: OpenPKG-SA-2006.042
-CVE-2006-XXXX [w3m format string issue]
- - w3m 0.5.1-5.1 (low; bug #404564)
- TODO: Check w3mee, is this forked version still needed?
CVE-2006-XXXX [insecure rpath in libflash-mozplugin]
- libflash 0.4.13-9 (low; bug #399508)
[etch] - libflash <no-dsa> (Not exploitable through directory writable by an unprivileged user)
More information about the Secure-testing-commits
mailing list