[Secure-testing-commits] r5932 - data/CVE

fw at alioth.debian.org fw at alioth.debian.org
Sat May 26 10:35:30 UTC 2007


Author: fw
Date: 2007-05-26 10:35:30 +0000 (Sat, 26 May 2007)
New Revision: 5932

Modified:
   data/CVE/list
Log:
CVE-2005-3675: TCP protocol issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-05-26 10:22:53 UTC (rev 5931)
+++ data/CVE/list	2007-05-26 10:35:30 UTC (rev 5932)
@@ -25396,7 +25396,8 @@
 CVE-2005-3676 (SQL injection vulnerability in download.php in PhpWebThings 1.4.4 ...)
 	NOT-FOR-US: PhpWebThings
 CVE-2005-3675 (The Transmission Control Protocol (TCP) allows remote attackers to ...)
-	TODO: check
+	NOTE: Generic protocol weakness, likely hard to fix at the kernel
+	NOTE: level without performance impact.
 CVE-2005-3674 (The Internet Key Exchange version 1 (IKEv1) implementation in the ...)
 	NOT-FOR-US: libike from Solaris
 CVE-2005-3673 (The Internet Key Exchange version 1 (IKEv1) implementation in Check ...)




More information about the Secure-testing-commits mailing list