jmm-guest at alioth.debian.org
2007-Jun-06 20:55 UTC
[Secure-testing-commits] r5976 - data/CVE
Author: jmm-guest Date: 2007-06-06 20:55:07 +0000 (Wed, 06 Jun 2007) New Revision: 5976 Modified: data/CVE/list Log: non-free not supported (please add these on your own if you add entries for non-free software) - new php5 issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-06-06 17:44:05 UTC (rev 5975) +++ data/CVE/list 2007-06-06 20:55:07 UTC (rev 5976) @@ -194,8 +194,10 @@ RESERVED CVE-2007-2873 RESERVED -CVE-2007-2872 +CVE-2007-2872 [php5 chunk_split() integer overflow] RESERVED + - php5 <unfixed> + NOTE: Fix from 5.2.3 was ineffective CVE-2007-2871 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...) - iceweasel <unfixed> (low) - iceape <unfixed> (low) @@ -296,10 +298,13 @@ NOT-FOR-US: Cisco CVE-2007-2831 (Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ...) - madwifi 1:0.9.3-2 (high; bug #425738) + [etch] - madwifi <no-dsa> (Non-free not supported) CVE-2007-2830 (The ath_beacon_config function in if_ath.c in MadWifi before 0.9.3.1 ...) - madwifi 1:0.9.3-2 (medium; bug #425738) + [etch] - madwifi <no-dsa> (Non-free not supported) CVE-2007-2829 (The 802.11 network stack in net80211/ieee80211_input.c in MadWifi ...) - madwifi 1:0.9.3-2 (medium; bug #425738) + [etch] - madwifi <no-dsa> (Non-free not supported) CVE-2007-2828 (Cross-site request forgery (CSRF) vulnerability in adsense-deluxe.php ...) NOT-FOR-US: AdSense-Deluxe CVE-2007-2827 (Heap-based buffer overflow in LEAD Technologies LEADTOOLS ISIS ActiveX ...)