Author: alec-guest Date: 2007-04-03 22:57:12 +0000 (Tue, 03 Apr 2007) New Revision: 5618 Modified: data/CVE/list Log: libx11, libxfont, and krb5 fixes libx11: CVE-2007-1667 libxfont: CVE-2007-1351, CVE-2007-1352 krb5: CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-04-03 21:47:23 UTC (rev 5617) +++ data/CVE/list 2007-04-03 22:57:12 UTC (rev 5618) @@ -385,7 +385,7 @@ CVE-2007-1668 RESERVED CVE-2007-1667 (Multiple integer overflows in (1) the XGetPixel function in ImUtil.c ...) - TODO: check + - libx11 2:1.0.3-7 (bug #414045) CVE-2007-1666 (The processor_request function in the debugger server for DataRescue ...) TODO: check CVE-2007-1665 @@ -1103,8 +1103,10 @@ RESERVED CVE-2007-1352 RESERVED + - libxfont 1:1.2.2-2 CVE-2007-1351 RESERVED + - libxfont 1:1.2.2-2 CVE-2007-1350 (Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 ...) NOT-FOR-US: Novell NetMail CVE-2007-1349 (PerlRun.pm in Apache mod_perl 1.30 and earlier, and RegistryCooker.pm ...) @@ -1515,6 +1517,7 @@ NOTE: Not exploitable over ISDN network, only through a CAPI server CVE-2007-1216 RESERVED + - krb5 1.4.4-8 CVE-2007-1215 RESERVED CVE-2007-1214 @@ -2288,8 +2291,10 @@ - linux-2.6 <unfixed> (unimportant) CVE-2007-0957 RESERVED + - krb5 1.4.4-8 CVE-2007-0956 RESERVED + - krb5 1.4.4-8 CVE-2007-0955 (The NTLM_UnPack_Type3 function in MENTLM.dll in MailEnable ...) NOT-FOR-US: Mail Enable Professional CVE-2007-0954 (MOHA Chat 0.1b7 and earlier does not require authentication for use of ...)