[Secure-testing-commits] r6010 - data/CVE

[fw at alioth.debian.org]

Author: fw
Date: 2007-06-16 10:50:05 +0000 (Sat, 16 Jun 2007)
New Revision: 6010

Modified:
   data/CVE/list
Log:
CVE-2007-3125: w3m bug number
CVE-2007-3123, CVE-2007-3122, CVE-2007-3025, CVE-2007-3024, CVE-2007-3023: clamav issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-06-16 10:41:23 UTC (rev 6009)
+++ data/CVE/list	2007-06-16 10:50:05 UTC (rev 6010)
@@ -271,13 +271,13 @@
 CVE-2007-3126 (Gimp 2.3.14 allows context-dependent attackers to cause a denial of ...)
 	- gimp <unfixed> (unimportant)
 CVE-2007-3125 (Format string vulnerability in the inputAnswer function in file.c in ...)
-	- w3m <unfixed> (medium)
+	- w3m <unfixed> (medium; bug #429218)
 CVE-2007-3124 (Buffer overflow in backup/src/vmsbackup.c (aka the backup utility) in ...)
 	NOT-FOR-US: FreeVMS
 CVE-2007-3123 (unrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 ...)
-	TODO: check
+	- clamav 0.90.3-1
 CVE-2007-3122 (The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 ...)
-	TODO: check
+	- clamav 0.90.3-1
 CVE-2007-3121 (Buffer overflow in the CCdecode function in contrib/ntsc-cc.c in the ...)
 	TODO: check
 CVE-2007-3120 (Cross-site scripting (XSS) vulnerability in public/code/cp_dpage.php ...)
@@ -471,11 +471,11 @@
 CVE-2007-3026
 	RESERVED
 CVE-2007-3025 (Unspecified vulnerability in libclamav/phishcheck.c in ClamAV before ...)
-	TODO: check
+	- clamav <not-affected> (Solaris-specific bug)
 CVE-2007-3024 (libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 ...)
-	TODO: check
+	- clamav 0.90.3-1
 CVE-2007-3023 (unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not ...)
-	TODO: check
+	- clamav 0.90.3-1
 CVE-2007-3022 (Symantec Reporting Server 1.0.197.0, and other versions before ...)
 	TODO: check
 CVE-2007-3021 (Symantec Reporting Server 1.0.197.0, and other versions before ...)