[Secure-testing-commits] r6617 - data/CVE
stef-guest at alioth.debian.org
stef-guest at alioth.debian.org
Sun Sep 16 19:21:54 UTC 2007
Author: stef-guest
Date: 2007-09-16 19:21:53 +0000 (Sun, 16 Sep 2007)
New Revision: 6617
Modified:
data/CVE/list
Log:
new qt issue
new issues fixed: moin, mondo, balsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-16 17:33:18 UTC (rev 6616)
+++ data/CVE/list 2007-09-16 19:21:53 UTC (rev 6617)
@@ -1,3 +1,9 @@
+CVE-2007-XXXX [moin cross site scripting]
+ - moin 1.5.8-2 (low)
+CVE-2007-XXXX [mondo insecure handling of temporary files]
+ - mondo 2.24-2 (low)
+CVE-2007-XXXX [balsa: buffer overflow in IMAP code]
+ - balsa 2.3.20-1
CVE-2007-4891 (A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in ...)
NOT-FOR-US: PDWizard
CVE-2007-4890 (Absolute directory traversal vulnerability in a certain ActiveX ...)
@@ -1669,8 +1675,11 @@
- samba 3.0.26-1
[etch] - samba <not-affected> (Vulnerable code was introduced in 3.0.25)
[sarge] - samba <not-affected> (Vulnerable code was introduced in 3.0.25)
-CVE-2007-4137
+CVE-2007-4137 [buffer overflow in QUtf8Decoder]
RESERVED
+ - qt-x11-free <unfixed> (medium; bug #442780)
+ - qt4-x11 <unfixed>
+ NOTE: probably not exploitable in qt4
CVE-2007-4136
RESERVED
CVE-2007-4135 (Unspecified vulnerability in the NFSv4 ID mapper (nfsidmap) on SUSE ...)
More information about the Secure-testing-commits
mailing list