joeyh at alioth.debian.org
2008-Jan-11 09:14 UTC
[Secure-testing-commits] r7877 - data/CVE
Author: joeyh
Date: 2008-01-11 09:14:11 +0000 (Fri, 11 Jan 2008)
New Revision: 7877
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-01-11 01:23:00 UTC (rev 7876)
+++ data/CVE/list 2008-01-11 09:14:11 UTC (rev 7877)
@@ -430,6 +430,7 @@
CVE-2007-6597 (Multiple cross-site scripting (XSS) vulnerabilities in IPortalX
before ...)
NOT-FOR-US: IPortalX
CVE-2007-6599 (Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and
1.5.0 ...)
+ {DSA-1458-1}
- openafs 1.4.6.dfsg1-1 (medium)
NOTE: http://www.openafs.org/security/OPENAFS-SA-2007-003.txt
CVE-2007-6595 (ClamAV 0.92 allows local users to overwrite arbitrary files via
a ...)
@@ -525,6 +526,7 @@
CVE-2007-XXXX [vlc insecure handling of vlcopt]
- vlc <unfixed> (medium; bug #458318)
CVE-2007-6598 (Dovecot before 1.0.10, with certain configuration options
including ...)
+ {DSA-1457-1}
- dovecot 1:1.0.10-1 (low; bug #458315)
[sarge] - dovecot <not-affected> (Vulnerable code not present)
NOTE: http://dovecot.org/list/dovecot-news/2007-December/000057.html
@@ -6859,6 +6861,7 @@
CVE-2007-4322 (BlockHosts before 2.0.4 does not properly parse (1) sshd and (2)
...)
NOT-FOR-US: BlockHosts
CVE-2007-4321 (fail2ban 0.8 and earlier does not properly parse sshd log files,
which ...)
+ {DSA-1456-1}
- fail2ban 0.8.0-4 (bug #438187; medium)
CVE-2007-4320 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: Ncaster