[Secure-testing-commits] r5340 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Tue Jan 23 23:44:03 CET 2007
Author: jmm-guest
Date: 2007-01-23 23:44:01 +0100 (Tue, 23 Jan 2007)
New Revision: 5340
Modified:
data/CVE/list
Log:
snort no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-01-23 22:42:55 UTC (rev 5339)
+++ data/CVE/list 2007-01-23 22:44:01 UTC (rev 5340)
@@ -531,7 +531,8 @@
CVE-2006-6932 (Multiple SQL injection vulnerabilities in Image Gallery with Access ...)
NOT-FOR-US: Image Gallery
CVE-2006-6931 (Algorithmic complexity vulnerability in Snort before 2.6.1, during ...)
- - snort <unfixed> (bug #407421)
+ - snort <unfixed> (low; bug #407421)
+ [sarge] - snort <no-dsa> (Minor issue)
CVE-2006-6930 (SQL injection vulnerability in viewad.asp in Rapid Classified 3.1 ...)
NOT-FOR-US: Rapid Classified
CVE-2006-6929 (Multiple cross-site scripting (XSS) vulnerabilities in Rapid ...)
@@ -811,7 +812,7 @@
- kdegraphics <unfixed> (unimportant)
- koffice <unfixed> (unimportant)
- poppler 0.4.5-5.1 (unimportant)
- - xpdf-reader <unfixed> (bug #406852; unimportant)
+ - xpdf <unfixed> (bug #406852; unimportant)
NOTE: hardly a security issue; if someone sends someone a crafted PDF file triggering
NOTE: such an endless loop the user will simply abort kpdf and never look at
NOTE: that file again, this is only denial of service by a _very_ far stretch
More information about the Secure-testing-commits
mailing list