[Secure-testing-commits] r7922 - data/CVE

Mon Jan 14 21:14:09 UTC 2008

Author: joeyh
Date: 2008-01-14 21:14:09 +0000 (Mon, 14 Jan 2008)
New Revision: 7922

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2008-01-14 20:55:01 UTC (rev 7921)
+++ data/CVE/list	2008-01-14 21:14:09 UTC (rev 7922)
@@ -30,6 +30,7 @@
 CVE-2008-0226 (Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL ...)
 	TODO: check
 CVE-2008-0225 (Heap-based buffer overflow in the rmff_dump_cont function in ...)
+	{DTSA-109-1}
 	- xine-lib <unfixed> (medium; bug #460551)
 CVE-2008-0224 (SQL injection vulnerability in index.php in the Newbb_plus 0.92 and ...)
 	NOT-FOR-US: RunCMS
@@ -598,11 +599,11 @@
 CVE-2007-6602 (SQL injection vulnerability in app/models/identity.php in NoseRub ...)
 	NOT-FOR-US: NoseRub
 CVE-2007-6601 (The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
 CVE-2007-6600 (PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
 	[sarge] - postgresql <unfixed>
@@ -1869,7 +1870,7 @@
 CVE-2007-6068
 	RESERVED
 CVE-2007-6067 (Algorithmic complexity vulnerability in the regular expression parser ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
 	[sarge] - postgresql <unfixed>
@@ -5938,7 +5939,7 @@
 CVE-2007-4773
 	RESERVED
 CVE-2007-4772 (The regular expression parser in TCL before 8.4.17, as used in ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
 	[sarge] - postgresql <unfixed>
@@ -5947,7 +5948,7 @@
 CVE-2007-4770
 	RESERVED
 CVE-2007-4769 (The regular expression parser in TCL before 8.4.17, as used in ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
 	[sarge] - postgresql <unfixed>
@@ -9526,7 +9527,7 @@
 	- postgresql-8.1 <not-affected> (Neither PL/pgsql nor dblink are enabled by default)
 	- postgresql-8.2 <not-affected> (Neither PL/pgsql nor dblink are enabled by default)
 CVE-2007-3278 (PostgreSQL 8.1 and probably later versions, when local trust ...)
-	{DSA-1460-1}
+	{DSA-1463-1 DSA-1460-1}
 	- postgresql-8.1 <not-affected> (local trust authentication is not enabled in Debian)
 	- postgresql-8.2 <not-affected> (local trust authentication is not enabled in Debian)
 CVE-2007-3277 (Unspecified vulnerability in the localization before 1.2 module for ...)


