joeyh at alioth.debian.org
2007-Jul-02 21:14 UTC
[Secure-testing-commits] r6086 - data/CVE
Author: joeyh
Date: 2007-07-02 21:14:09 +0000 (Mon, 02 Jul 2007)
New Revision: 6086
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-07-02 19:50:56 UTC (rev 6085)
+++ data/CVE/list 2007-07-02 21:14:09 UTC (rev 6086)
@@ -438,7 +438,7 @@
CVE-2007-3258
RESERVED
CVE-2007-3257 (Camel (camel-imap-folder.c) in the mailer component for
Evolution Data ...)
- {DSA-1321-1}
+ {DSA-1325-1 DSA-1321-1}
- evolution-data-server 1.10.2-2 (bug #429876)
[sarge] - evolution-data-server <not-affected> (Vulnerable code present
in a different source package)
CVE-2007-3256
@@ -1411,15 +1411,20 @@
CVE-2007-2839
RESERVED
CVE-2007-2838
+ RESERVED
+ {DSA-1327-1}
- gsambad 0.1.6-2 (bug #431331)
CVE-2007-2837
RESERVED
+ {DSA-1326-1}
CVE-2007-2836 [hiki file deletion vulnerability]
RESERVED
+ {DSA-1324-1}
- hiki 0.8.7-1 (bug #430691; medium)
[sarge] - hiki <not-affected> (Vulnerable code not present)
CVE-2007-2835
RESERVED
+ {DSA-1328-1}
CVE-2007-2834
RESERVED
CVE-2007-2833 (Emacs 21 allows user-assisted attackers to cause a denial of
service ...)
@@ -1498,6 +1503,7 @@
CVE-2007-2799 (Integer overflow in the "file" program 4.20,
when running on 32-bit ...)
- file 4.21-1 (medium)
CVE-2007-2798 (Stack-based buffer overflow in the rename_principal_2_svc
function in ...)
+ {DSA-1323-1}
- krb5 1.6.dfsg.1-5 (high; bug #430785)
CVE-2006-7205 (The array_fill function in ext/standard/array.c in PHP 4.4.2 and
5.1.2 ...)
- php4 <unfixed> (unimportant)
@@ -2291,8 +2297,10 @@
{DSA-1291-2 DTSA-41-1}
- samba 3.0.25-1
CVE-2007-2443 (Integer signedness error in the gssrpc__svcauth_unix function in
...)
+ {DSA-1323-1}
- krb5 1.6.dfsg.1-5 (bug #430787; medium)
CVE-2007-2442 (The gssrpc__svcauth_gssapi function in the RPC library in MIT
Kerberos ...)
+ {DSA-1323-1}
- krb5 1.6.dfsg.1-5 (bug #430787; high)
CVE-2007-2441 (Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and
earlier for ...)
NOT-FOR-US: Caucho Resin Professional
@@ -5961,6 +5969,7 @@
{DSA-1294-1}
- xorg-server 2:1.1.1-21 (medium)
CVE-2007-1002 (Format string vulnerability in the write_html function in ...)
+ {DSA-1325-1}
- evolution <unfixed>
[sarge] - evolution <not-affected> (Vulnerable code not present)
CVE-2007-1001 (Multiple integer overflows in the (1) createwbmp and (2)
readwbmp ...)