[Secure-testing-commits] r5355 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Sat Jan 27 15:09:07 CET 2007
Author: stef-guest
Date: 2007-01-27 15:09:05 +0100 (Sat, 27 Jan 2007)
New Revision: 5355
Modified:
data/CVE/list
Log:
- new hinfo issue fixed
- geoip fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-01-27 10:50:13 UTC (rev 5354)
+++ data/CVE/list 2007-01-27 14:09:05 UTC (rev 5355)
@@ -1,3 +1,5 @@
+CVE-2007-XXXX [hinfo code injection]
+ - hinfo 1.02-3.1 (bug #402316)
CVE-2007-XXXX [unsafe alloca() call in chmlib]
- chmlib <unfixed> (bug #408603; medium)
CVE-2007-0494 [bind DoS]
@@ -775,7 +777,7 @@
NOTE: fake LiveJournal server. All version of Debian centericq packages have a
NOTE: compromised code.
CVE-2007-0159 (Directory traversal vulnerability in the GeoIP_update_database_general ...)
- - libgeoip1 <unfixed> (bug #406628; medium)
+ - geoip 1.3.17-1.1 (bug #406628; medium)
CVE-2007-0158
RESERVED
CVE-2007-0157 (Array index error in the uri_lookup function in the URI parser for ...)
More information about the Secure-testing-commits
mailing list