[Secure-testing-commits] r8077 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Tue Feb 5 10:05:33 UTC 2008
Author: nion
Date: 2008-02-05 10:05:33 +0000 (Tue, 05 Feb 2008)
New Revision: 8077
Modified:
data/CVE/list
Log:
tk and netpbm got own cve ids for latest buffer overflows
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-02-05 07:33:04 UTC (rev 8076)
+++ data/CVE/list 2008-02-05 10:05:33 UTC (rev 8077)
@@ -1,3 +1,9 @@
+CVE-2008-0553 [buffer overflow in tk GIF handling]
+ - tk8.5 8.5.0-3
+ - tk8.4 8.4.17-2
+ - tk8.3 8.3.5-12
+CVE-2008-0554 [buffer overflow in netpbm GIF handling]
+ - netpbm <unfixed> (bug #464056)
CVE-2008-0564 [mailman xss as list admin]
- mailman <unfixed> (low)
[etch] - mailman <no-dsa> (Minor issue)
@@ -24026,10 +24032,6 @@
CVE-2006-4484 (Buffer overflow in the LWZReadByte_ function in ...)
- libgd2 2.0.33-5.1 (medium; bug #384838)
- xloadimage <unfixed> (unimportant; bug #384841)
- - tk8.5 8.5.0-3
- - tk8.4 8.4.17-2
- - tk8.3 8.3.5-12
- - netpbm <unfixed> (bug #464056)
NOTE: xloadimage is a crasher only, not a security problem
CVE-2006-4483 (The cURL extension files (1) ext/curl/interface.c and (2) ...)
- php5 5.1.6-1 (unimportant)
More information about the Secure-testing-commits
mailing list