[Secure-testing-commits] r18512 - data/CVE

Wed Feb 22 08:51:29 UTC 2012

Author: pabs
Date: 2012-02-22 08:51:29 +0000 (Wed, 22 Feb 2012)
New Revision: 18512

Modified:
   data/CVE/list
Log:
Some unfixed Quake 3 vulnerabilities

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-02-21 23:43:23 UTC (rev 18511)
+++ data/CVE/list	2012-02-22 08:51:29 UTC (rev 18512)
@@ -87627,7 +87627,8 @@
 CVE-2006-2876 (Cross-site scripting (XSS) vulnerability in cat.php in PHP Pro Publish ...)
 	NOT-FOR-US: PHP Pro Publish
 CVE-2006-2875 (Stack-based buffer overflow in the CL_ParseDownload function of Quake ...)
-	NOT-FOR-US: Quake 3
+	- tremulous <unfixed> (bug #660830)
+	- ioquake3 1.36+svn1788j-1
 CVE-2006-2874 (Unspecified vulnerability in OSADS Alliance Database before 1.4 has ...)
 	NOT-FOR-US: OSADS
 CVE-2006-2873 (Cross-site scripting (XSS) vulnerability in hava.asp in Enigma Haber ...)
@@ -89145,7 +89146,8 @@
 	{DSA-1058-1}
 	- awstats 6.5-2 (bug #365909; bug #365910; medium)
 CVE-2006-2236 (Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) ...)
-	NOT-FOR-US: Quake 3
+	- tremulous <unfixed> (bug #660827)
+	- ioquake3 1.36+svn1788j-1
 CVE-2006-2235 (CodeMunkyX (aka free-php.net) Simple Poll 1.0, when authentication is ...)
 	NOT-FOR-US: Simple Poll
 CVE-2006-2234 (Multiple cross-site scripting (XSS) vulnerabilities in TyroCMS beta ...)


