[Secure-testing-commits] r7404 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Tue Nov 27 09:14:09 UTC 2007 

Author: joeyh
Date: 2007-11-27 09:14:09 +0000 (Tue, 27 Nov 2007)
New Revision: 7404

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-11-27 00:23:26 UTC (rev 7403)
+++ data/CVE/list	2007-11-27 09:14:09 UTC (rev 7404)
@@ -14,7 +14,7 @@
 	[sarge] - ethereal <not-affected> (Vulnerable code not present)
 CVE-2007-6113 [remote denial of service via malformed dnp paket]
 	- wireshark 0.99.7~pre1-1 (low)
-        NOTE: This is likely a dupe of CVE-2007-4721, pinged MITRE
+	NOTE: This is likely a dupe of CVE-2007-4721, pinged MITRE
 CVE-2007-6114 [multiple buffer overflows in SSL dissector]
 	- wireshark 0.99.7~pre1-1 (medium)
 	[sarge] - ethereal <not-affected> (Vulnerable code not present)
@@ -322,6 +322,7 @@
 CVE-2007-5926 (OpenBase 10.0.5 and earlier allows remote authenticated users to ...)
 	NOT-FOR-US: OpenBase
 CVE-2007-5925 (The convert_search_mode_to_innobase function in ha_innodb.cc in the ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.45-3 (medium; bug #451235)
 	- mysql-dfsg-4.1 <removed>
 	- mysql-dfsg <removed>
@@ -6158,6 +6159,7 @@
 CVE-2007-3783 (SQL injection vulnerability in default.asp in enVivo!CMS allows remote ...)
 	NOT-FOR-US: enVivo!CMS
 CVE-2007-3782 (MySQL Community Server before 5.0.45 allows remote authenticated users ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.42
 	[sarge] - mysql-dfsg <not-affected> (Vulnerable functionality was introduced in 5.0)
 	[sarge] - mysql-dfsg-4.1 <not-affected> (Vulnerable functionality was introduced in 5.0)
@@ -6167,6 +6169,7 @@
 	[sarge] - mysql-dfsg <no-dsa> (Minor issue, too intrusive to backport)
 	[sarge] - mysql-dfsg-4.1 <no-dsa> (Minor issue, too intrusive to backport)
 CVE-2007-3780 (MySQL Community Server before 5.0.45 allows remote attackers to cause ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.44
 	[sarge] - mysql-dfsg <not-affected> (Introduced with SSL support in 4.1)
 CVE-2007-3779 (PHP local file inclusion vulnerability in gpg_pop_init.php in the ...)
@@ -8829,11 +8832,13 @@
 	[sarge] - mysql-dfsg-4.1 <not-affected> (Only MySQL 5.1 affected)
 	[sarge] - mysql-dfsg <not-affected> (Only MySQL 5.1 affected)
 CVE-2007-2692 (The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.42 (bug #424778)
 	[sarge] - mysql-dfsg-4.1 <not-affected> (Vulnerable functionality not implemented)
 	[sarge] - mysql-dfsg <not-affected> (Vulnerable functionality not implemented)
 	NOTE: http://bugs.mysql.com/bug.php?id=28499
 CVE-2007-2691 (MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.41a-1 (bug #424778; bug #424830)
 CVE-2007-2690 (Multiple IBM ISS Proventia Series products, including the A, G, and M ...)
 	NOT-FOR-US: ISS
@@ -9070,6 +9075,7 @@
 CVE-2007-2584 (Buffer overflow in the IsOldAppInstalled function in the ...)
 	NOT-FOR-US: Subscription Manager ActiveX control
 CVE-2007-2583 (The in_decimal::set function in item_cmpfunc.cc in MySQL before ...)
+	{DSA-1413-1}
 	- mysql-dfsg-5.0 5.0.41-1 (low; bug #426353)
 	[sarge] - mysql-dfsg <not-affected> (Vulnerable functionality not implemented)
 	[sarge] - mysql-dfsg <not-affected> (Not affected, test case doesn't crash the daemon)

More information about the Secure-testing-commits mailing list