[Secure-testing-commits] r8779 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Sun May 11 21:14:32 UTC 2008 

Author: joeyh
Date: 2008-05-11 21:14:31 +0000 (Sun, 11 May 2008)
New Revision: 8779

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-05-11 18:40:54 UTC (rev 8778)
+++ data/CVE/list	2008-05-11 21:14:31 UTC (rev 8779)
@@ -151,10 +151,12 @@
 	RESERVED
 	- sip-tester 2.0.1-1.2 (low; bug #479039)
 CVE-2008-2051 (The escapeshellcmd API function in PHP before 5.2.6 has unknown impact ...)
+	{DSA-1572-1}
 	- php5 5.2.6-1
 	NOTE: http://www.php.net/ChangeLog-5.php
 	NOTE: http://www.sektioneins.de/advisories/SE-2008-03.txt
 CVE-2008-2050 (Stack-based buffer overflow in the FastCGI SAPI (fastcgi.c) in PHP ...)
+	{DSA-1572-1}
 	- php5 5.2.6-1
 	NOTE: php4 not affected, the vulnerable code isn't present
 	NOTE: http://www.php.net/ChangeLog-5.php
@@ -669,12 +671,15 @@
 	RESERVED
 CVE-2008-1803 [rdesktop signedness error in xrealloc]
 	RESERVED
+	{DSA-1573-1}
 	- rdesktop 1.5.0-4+cvs20071006 (bug #480135)
 CVE-2008-1802 [rdesktop heap overflow via RDP redirect request]
 	RESERVED
+	{DSA-1573-1}
 	- rdesktop 1.5.0-4+cvs20071006 (bug #480134)
 CVE-2008-1801 [rdesktop heap overflow]
 	RESERVED
+	{DSA-1573-1}
 	- rdesktop 1.5.0-4+cvs20071006 (bug #480133)
 CVE-2008-1800 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
 	NOT-FOR-US: DivXDB
@@ -1621,6 +1626,7 @@
 	- serendipity 1.3.1-1 (low)
 	NOTE: etch affected, but only in specific plugin.
 CVE-2008-1384 (Integer overflow in PHP 5.2.5 and earlier allows context-dependent ...)
+	{DSA-1572-1}
 	- php5 5.2.6-1 (unimportant)
 	NOTE: http://securityreason.com/achievement_securityalert/52
 	NOTE: Only exploitable through malicious script
@@ -12695,7 +12701,7 @@
 CVE-2007-3807 (Multiple cross-site scripting (XSS) vulnerabilities in SiteScape Forum ...)
 	NOT-FOR-US: SiteScape Forum
 CVE-2007-3806 (The glob function in PHP 5.2.3 allows context-dependent attackers to ...)
-	{DTSA-61-1}
+	{DSA-1572-1 DTSA-61-1}
 	- php5 5.2.4-1 (medium; bug #441433)
 	- php4 <removed>
 	[etch] - php5 <no-dsa> (requires malicious script)

More information about the Secure-testing-commits mailing list