[Secure-testing-commits] r7345 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Nov 17 18:35:36 UTC 2007
Author: nion
Date: 2007-11-17 18:35:36 +0000 (Sat, 17 Nov 2007)
New Revision: 7345
Modified:
data/CVE/list
Log:
another note for CVE-2007-6000
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-11-17 15:47:35 UTC (rev 7344)
+++ data/CVE/list 2007-11-17 18:35:36 UTC (rev 7345)
@@ -23,6 +23,9 @@
CVE-2007-6000 (KDE Konqueror 3.5.6 and earlier allows remote attackers to cause a ...)
TODO: check
NOTE: not reproducible with 4:3.5.8.dfsg.1-1, poked maintainer
+ NOTE: on etch it seems konqueror only treats the cookie value until some special length
+ NOTE: as cookie, after this length it will open the rest as site content. This eats alot
+ NOTE: ram and cpu but depending on how much ram the system has, konqueror does not crash.
CVE-2007-5999 (SQL injection vulnerability in product_desc.php in Softbiz Auctions ...)
NOT-FOR-US: Softbiz
CVE-2007-5998 (SQL injection vulnerability in ads.php in Softbiz Ad Management plus ...)
More information about the Secure-testing-commits
mailing list