[Secure-testing-commits] r5976 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Wed Jun 6 20:55:08 UTC 2007
Author: jmm-guest
Date: 2007-06-06 20:55:07 +0000 (Wed, 06 Jun 2007)
New Revision: 5976
Modified:
data/CVE/list
Log:
non-free not supported (please add these on your own if you
add entries for non-free software)
- new php5 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-06-06 17:44:05 UTC (rev 5975)
+++ data/CVE/list 2007-06-06 20:55:07 UTC (rev 5976)
@@ -194,8 +194,10 @@
RESERVED
CVE-2007-2873
RESERVED
-CVE-2007-2872
+CVE-2007-2872 [php5 chunk_split() integer overflow]
RESERVED
+ - php5 <unfixed>
+ NOTE: Fix from 5.2.3 was ineffective
CVE-2007-2871 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...)
- iceweasel <unfixed> (low)
- iceape <unfixed> (low)
@@ -296,10 +298,13 @@
NOT-FOR-US: Cisco
CVE-2007-2831 (Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ...)
- madwifi 1:0.9.3-2 (high; bug #425738)
+ [etch] - madwifi <no-dsa> (Non-free not supported)
CVE-2007-2830 (The ath_beacon_config function in if_ath.c in MadWifi before 0.9.3.1 ...)
- madwifi 1:0.9.3-2 (medium; bug #425738)
+ [etch] - madwifi <no-dsa> (Non-free not supported)
CVE-2007-2829 (The 802.11 network stack in net80211/ieee80211_input.c in MadWifi ...)
- madwifi 1:0.9.3-2 (medium; bug #425738)
+ [etch] - madwifi <no-dsa> (Non-free not supported)
CVE-2007-2828 (Cross-site request forgery (CSRF) vulnerability in adsense-deluxe.php ...)
NOT-FOR-US: AdSense-Deluxe
CVE-2007-2827 (Heap-based buffer overflow in LEAD Technologies LEADTOOLS ISIS ActiveX ...)
More information about the Secure-testing-commits
mailing list