[Secure-testing-commits] r7844 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Sun Jan 6 21:14:11 UTC 2008 

Author: joeyh
Date: 2008-01-06 21:14:10 +0000 (Sun, 06 Jan 2008)
New Revision: 7844

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-06 21:03:45 UTC (rev 7843)
+++ data/CVE/list	2008-01-06 21:14:10 UTC (rev 7844)
@@ -1034,6 +1034,7 @@
 CVE-2007-6281 (Heap-based buffer overflow in Open File Manager service (ofmnt.exe) in ...)
 	NOT-FOR-US: St. Bernard Open File Manager
 CVE-2007-6304 (The federated engine in MySQL 5.0.x before 5.0.52, 5.1.x before ...)
+	{DSA-1451-1}
 	- mysql-dfsg-5.0 5.0.45-5 (low; bug #455737)
 	TODO: check mysql4
 CVE-2007-6303 (MySQL 5.0.x before 5.0.52, 5.1.x before 5.1.23, and 6.0.x before 6.0.4 ...)
@@ -1809,6 +1810,7 @@
 	NOTE: version in experimental is affected by this
 	NOTE: the debian maintainers do not yet have access to this issue: http://lists.mysql.com/packagers/377
 CVE-2007-5969 (MySQL Community Server before 5.0.51, when a table relies on symlinks ...)
+	{DSA-1451-1}
 	- mysql-dfsg-5.0 5.0.45-4 (low; bug #455010)
 	TODO: check mysql 4
 CVE-2007-5968
@@ -4202,6 +4204,7 @@
 CVE-2007-5302 (Multiple cross-site scripting (XSS) vulnerabilities in HP System ...)
 	NOT-FOR-US: HP System Management Homepage
 CVE-2007-5300 (Off-by-one error in the do_login_loop function in ...)
+	{DSA-1452-1}
 	- wzdftpd 0.8.2-2.1 (medium; bug #446192)
 CVE-2007-5299 (Multiple directory traversal vulnerabilities in SkaDate 5.0 and 6.0, ...)
 	NOT-FOR-US: SkaDate
@@ -7896,6 +7899,7 @@
 	[sarge] - mysql-dfsg <not-affected> (Vulnerable functionality was introduced in 5.0)
 	[sarge] - mysql-dfsg-4.1 <not-affected> (Vulnerable functionality was introduced in 5.0)
 CVE-2007-3781 (MySQL Community Server before 5.0.45 does not require privileges such ...)
+	{DSA-1451-1}
 	- mysql-dfsg-5.0 5.0.45-1
 	[etch] - mysql-dfsg-5.0 <no-dsa> (Minor issue, too intrusive to backport)
 	[sarge] - mysql-dfsg <no-dsa> (Minor issue, too intrusive to backport)

More information about the Secure-testing-commits mailing list