Author: nion Date: 2008-01-09 13:09:13 +0000 (Wed, 09 Jan 2008) New Revision: 7862 Modified: data/CVE/list Log: AST-2008-001 got CVE-2008-0095 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-09 13:04:24 UTC (rev 7861) +++ data/CVE/list 2008-01-09 13:09:13 UTC (rev 7862) @@ -130,7 +130,9 @@ CVE-2008-0096 (Multiple buffer overflows in Georgia SoftWorks SSH2 Server (GSW_SSHD) ...) NOT-FOR-US: Georgia SoftWorks SSH2 Server CVE-2008-0095 (The SIP channel driver in Asterisk Open Source 1.4.x before 1.4.17, ...) - TODO: check + - asterisk 1:1.4.17~dfsg-1 (medium; bug #458952) + [etch] - asterisk <not-affected> (Only Asterisk 1.4.x affected) + [sarge] - asterisk <not-affected> (Only Asterisk 1.4.x affected) CVE-2008-0094 (Multiple directory traversal vulnerabilities in MODx Content ...) TODO: check CVE-2008-0093 (Multiple cross-site scripting (XSS) vulnerabilities in newticket.php ...) @@ -426,10 +428,6 @@ CVE-2007-6599 (Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and 1.5.0 ...) - openafs 1.4.6.dfsg1-1 (medium) NOTE: http://www.openafs.org/security/OPENAFS-SA-2007-003.txt -CVE-2007-XXXX [asterisk AST-2008-001] - - asterisk 1:1.4.17~dfsg-1 (medium; bug #458952) - [etch] - asterisk <not-affected> (Only Asterisk 1.4.x affected) - [sarge] - asterisk <not-affected> (Only Asterisk 1.4.x affected) CVE-2007-6595 (ClamAV 0.92 allows local users to overwrite arbitrary files via a ...) - clamav <unfixed> (low; bug #458532) [etch] - clamav <not-affected> (Minor issue, first issue doesn''t apply)