joeyh at alioth.debian.org
2008-May-05 21:14 UTC
[Secure-testing-commits] r8714 - data/CVE
Author: joeyh
Date: 2008-05-05 21:14:13 +0000 (Mon, 05 May 2008)
New Revision: 8714
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-05-05 17:16:05 UTC (rev 8713)
+++ data/CVE/list 2008-05-05 21:14:13 UTC (rev 8714)
@@ -2163,6 +2163,7 @@
CVE-2008-1103 (Multiple unspecified vulnerabilities in Blender have unknown
impact ...)
TODO: check
CVE-2008-1102 (Stack-based buffer overflow in the imb_loadhdr function in
Blender ...)
+ {DSA-1567-1}
- blender 2.45-5 (medium; bug #477808)
CVE-2008-1101 (Buffer overflow in kvdocve.dll in the KeyView document viewing
engine ...)
NOT-FOR-US: KeyView
@@ -2836,11 +2837,13 @@
[etch] - cacti <not-affected> (Not exploitable with Etch PHP version)
NOTE: this is prevented by PHP since 4.4.2/5.1.2.
CVE-2008-0785 (Multiple SQL injection vulnerabilities in Cacti 0.8.7 before
0.8.7b ...)
+ {DSA-1569-1}
- cacti 0.8.7b-1
CVE-2008-0784 (graph.php in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k
allows ...)
- cacti 0.8.7b-1 (unimportant)
NOTE: paths on Debian already known
CVE-2008-0783 (Multiple cross-site scripting (XSS) vulnerabilities in Cacti
0.8.7 ...)
+ {DSA-1569-1}
- cacti 0.8.7b-1
CVE-2008-0782 (Directory traversal vulnerability in MoinMoin 1.5.8 and earlier
allows ...)
{DSA-1514-1}
@@ -21796,6 +21799,7 @@
- gforge 4.6.99+svn6347-1 (low; bug #406244)
[sarge] - gforge <not-affected> (Vulnerable code not present)
CVE-2007-0175 (Cross-site scripting (XSS) vulnerability in htsrv/login.php in
...)
+ {DSA-1568-1}
- b2evolution 0.9.2-4 (bug #410568; low)
CVE-2007-0174 (Multiple stack-based multiple buffer overflows in the
BRWOSSRE2UC.dll ...)
NOT-FOR-US: Sina UC2006