[Git][security-tracker-team/security-tracker][master] Build new cross-references after suffix addition to some old DSAs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Aug 3 08:44:49 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c466b634 by Salvatore Bonaccorso at 2025-08-03T09:44:17+02:00
Build new cross-references after suffix addition to some old DSAs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -821060,7 +821060,7 @@ CVE-2007-1595 (The Asterisk Extension Language (AEL) in pbx/pbx_ael.c in Asteris
 CVE-2007-1593 (The administrative service in Symantec Veritas Volume Replicator (VVR) ...)
 	NOT-FOR-US: Symantec
 CVE-2007-1592 (net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertent ...)
-	{DSA-1503-2 DSA-1503-1 DSA-1304 DSA-1286-1}
+	{DSA-1503-2 DSA-1503-1 DSA-1304-1 DSA-1286-1}
 	- linux-2.6 2.6.20-1 (medium)
 CVE-2007-1591 (VsapiNT.sys in the Scan Engine 8.0 for Trend Micro AntiVirus 14.10.104 ...)
 	NOT-FOR-US: Trend Micro
@@ -821693,7 +821693,7 @@ CVE-2007-1358 (Cross-site scripting (XSS) vulnerability in certain applications
 	- tomcat4 <removed> (low)
 	[sarge] - tomcat4 <no-dsa> (Contrib not supported)
 CVE-2007-1357 (The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before  ...)
-	{DSA-1304 DSA-1286-1}
+	{DSA-1304-1 DSA-1286-1}
 	- linux-2.6 2.6.20-1
 CVE-2007-1356
 	REJECTED
@@ -822945,7 +822945,7 @@ CVE-2007-0960 (Unspecified vulnerability in Cisco PIX 500 and ASA 5500 Series Se
 CVE-2007-0959 (Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when conf ...)
 	NOT-FOR-US: Cisco
 CVE-2007-0958 (Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable ...)
-	{DSA-1304 DSA-1286-1}
+	{DSA-1304-1 DSA-1286-1}
 	- linux-2.6 2.6.20-1
 CVE-2007-0957 (Stack-based buffer overflow in the krb5_klog_syslog function in the ka ...)
 	{DSA-1276-1}
@@ -823519,7 +823519,7 @@ CVE-2007-0772 (The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows
 CVE-2007-0771 (The utrace support in Linux kernel 2.6.18, and other versions, allows  ...)
 	- linux-2.6 <not-affected> (RHEL-specific backport, only present in -mm tree)
 CVE-2007-0770 (Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted ...)
-	{DSA-1260}
+	{DSA-1260-1}
 	- graphicsmagick 1.1.7-12
 	- imagemagick 7:6.2.4.5.dfsg1-0.14 (bug #410435)
 CVE-2007-1667 (Multiple integer overflows in (1) the XGetPixel function in ImUtil.c i ...)
@@ -824308,12 +824308,12 @@ CVE-2007-0455 (Buffer overflow in the gdImageStringFTEx function in gdft.c in GD
 	[sarge] - libgd2 <no-dsa> (Minor issue, hardly exploitable)
 	[etch] - libgd2 <no-dsa> (Minor issue, hardly exploitable)
 CVE-2007-0454 (Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 ...)
-	{DSA-1257}
+	{DSA-1257-1}
 	- samba 3.0.23d-5 (medium)
 CVE-2007-0453 (Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 throug ...)
 	- samba <not-affected> (Solaris-specific vulnerability)
 CVE-2007-0452 (smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users  ...)
-	{DSA-1257}
+	{DSA-1257-1}
 	- samba 3.0.23d-5 (low)
 CVE-2007-0450 (Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x ...)
 	- tomcat5 <removed> (unimportant)
@@ -826312,7 +826312,7 @@ CVE-2006-6537 (IBM WebSphere Host On-Demand 6.0, 7.0, 8.0, 9.0, and possibly 10,
 CVE-2006-6536 (Cross-site scripting (XSS) vulnerability in hata.asp in Cilem Haber Fr ...)
 	NOT-FOR-US: Cilem Haber Free Edition
 CVE-2006-6535 (The dev_queue_xmit function in Linux kernel 2.6 can fail before callin ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 <not-affected> (Fixed before upload into the archive; 2.6.10)
 CVE-2006-6534 (Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 3.0a ...)
 	NOT-FOR-US: osCommerce
@@ -827320,7 +827320,7 @@ CVE-2006-6107 (Unspecified vulnerability in the match_rule_equal function in bus
 	- dbus 1.0.2-1 (low)
 	[sarge] - dbus <no-dsa> (Minor issue)
 CVE-2006-6106 (Multiple buffer overflows in the cmtp_recv_interopmsg function in the  ...)
-	{DSA-1503-2 DSA-1503-1 DSA-1304}
+	{DSA-1503-2 DSA-1503-1 DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-9
 CVE-2006-6105 (Format string vulnerability in the host chooser window (gdmchooser) in ...)
 	- gdm 2.16.4-1 (medium; bug #403219)
@@ -827426,7 +827426,7 @@ CVE-2006-6062 (Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly
 CVE-2006-6061 (com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possi ...)
 	NOT-FOR-US: Apple Mac OS X
 CVE-2006-6060 (The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possi ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
 	NOTE: Mounting filesystem partitions should be limited to root
 CVE-2006-6059 (Buffer overflow in MA521nd5.SYS driver 5.148.724.2003 for NetGear MA52 ...)
@@ -827438,7 +827438,7 @@ CVE-2006-6058 (The minix filesystem code in Linux kernel 2.6.x before 2.6.24, in
 CVE-2006-6057 (The Linux kernel 2.6.x up to 2.6.18, and possibly other versions, on F ...)
 	- linux-2.6 <not-affected> (Debian kernels up to 2.6.18 didn't include GFS)
 CVE-2006-6056 (Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELi ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
 	NOTE: Mounting filesystem partitions should be limited to root
 CVE-2006-6055 (Stack-based buffer overflow in A5AGU.SYS 1.0.1.41 for the D-Link DWL-G ...)
@@ -827448,7 +827448,7 @@ CVE-2006-6054 (The ext2 file system code in Linux kernel 2.6.x allows local user
 	- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
 	NOTE: Mounting filesystem partitions should be limited to root
 CVE-2006-6053 (The ext3fs_dirhash function in Linux kernel 2.6.x allows local users t ...)
-	{DSA-1503-2 DSA-1503-1 DSA-1304}
+	{DSA-1503-2 DSA-1503-1 DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
 	NOTE: Mounting filesystem partitions should be limited to root
 CVE-2006-6052 (NetEpi Case Manager before 0.98 generates different error messages dep ...)
@@ -828084,7 +828084,7 @@ CVE-2006-5759 (index.php in Rhadrix If-CMS, possibly 1.01 and 2.07, allows remot
 CVE-2006-5758 (The Graphics Rendering Engine in Microsoft Windows 2000 through 2000 S ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-5757 (Race condition in the __find_get_block_slow function in the ISO9660 fi ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-10 (low)
 CVE-2006-5756
 	REJECTED
@@ -828092,10 +828092,10 @@ CVE-2006-5755 (Linux kernel before 2.6.18, when running on x86_64 systems, does
 	{DSA-1381-2}
 	- linux-2.6 2.6.18.dfsg.1-10
 CVE-2006-5754 (The aio_setup_ring function in Linux kernel does not properly initiali ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 <not-affected> (Fixed before initial upload; 2.6.10)
 CVE-2006-5753 (Unspecified vulnerability in the listxattr system call in Linux kernel ...)
-	{DSA-1503-2 DSA-1503-1 DSA-1356-1 DSA-1304}
+	{DSA-1503-2 DSA-1503-1 DSA-1356-1 DSA-1304-1}
 	- linux-2.6 2.6.20-1
 CVE-2006-5752 (Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_st ...)
 	- apache2 2.2.4-2 (low)
@@ -829924,7 +829924,7 @@ CVE-2006-4926 (The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS)
 CVE-2005-4812 (The SISCO OSI stack for Windows, as used by MMS-EASE 7.10 and earlier, ...)
 	NOT-FOR-US: SISCO OSI stack for Windows
 CVE-2005-4811 (The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly 2.6.12 and ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 2.6.14
 CVE-2006-4925 (packet.c in ssh in OpenSSH allows remote attackers to cause a denial o ...)
 	- openssh 1:5.1p1-5 (unimportant)
@@ -830155,7 +830155,7 @@ CVE-2006-4816
 CVE-2006-4815
 	RESERVED
 CVE-2006-4814 (The mincore function in the Linux kernel before 2.4.33.6 does not prop ...)
-	{DSA-1503-2 DSA-1503-1 DSA-1304}
+	{DSA-1503-2 DSA-1503-1 DSA-1304-1}
 	- linux-2.6 2.6.18.dfsg.1-9 (low)
 	- kernel-patch-openvz 028.18.1
 CVE-2006-4813 (The __block_prepare_write function in fs/buffer.c for Linux kernel 2.6 ...)
@@ -830574,7 +830574,7 @@ CVE-2006-4624 (CRLF injection vulnerability in Utils.py in Mailman before 2.1.9r
 	{DSA-1188-1}
 	- mailman 1:2.1.8-3
 CVE-2006-4623 (The Unidirectional Lightweight Encapsulation (ULE) decapsulation compo ...)
-	{DSA-1304}
+	{DSA-1304-1}
 	- linux-2.6 2.6.18-1
 CVE-2002-2217 (Multiple PHP remote file inclusion vulnerabilities in Web Server Creat ...)
 	NOT-FOR-US: Data pre-dating the Security Tracker



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c466b634fb28d590bbda7a9e884d56f8d94c828a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c466b634fb28d590bbda7a9e884d56f8d94c828a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250803/f3701c76/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list