thr3ads.net - Secure testing commits - [Secure-testing-commits] r7766

If this information is useful, please help other people find it:
Share via:

stef-guest at alioth.debian.org

2007-Dec-30 11:00 UTC

[Secure-testing-commits] r7766 - data/CVE

Author: stef-guest
Date: 2007-12-30 11:00:04 +0000 (Sun, 30 Dec 2007)
New Revision: 7766

Modified:
   data/CVE/list
Log:
new vlc issues

Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-12-30 10:46:36 UTC (rev 7765)
+++ data/CVE/list	2007-12-30 11:00:04 UTC (rev 7766)
@@ -1,3 +1,12 @@
+CVE-2007-XXXX [vlc mozilla plugin arbitrary file overwrite vulnerability]
+	- vlc <unfixed> (high; bug filed)
+	NOTE: see https://trac.videolan.org/vlc/ticket/1371
+CVE-2007-XXXX [vlc format string vulnerability in built-in web-server]
+	- vlc <unfixed>
+	NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
+CVE-2007-XXXX [vlc buffer overflow in subtitle handling]
+	- vlc <unfixed> (low)
+	NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
 CVE-2007-XXXX [dovecot LDAP auth may authenticate as wrong user]
 	- dovecot 1:1.0.10-1 (low; bug #458315)
 	[sarge] - dovecot <not-affected> (Vulnerable code not present)

Secure testing commits - Dec 2007 - r7766 - data/CVE

[Secure-testing-commits] r7766 - data/CVE