Author: keescook-guest Date: 2007-03-09 02:02:46 +0000 (Fri, 09 Mar 2007) New Revision: 5527 Modified: data/CVE/list Log: added bugs for open issues in gnupg, xine-lib, ekiga Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-03-08 20:40:49 UTC (rev 5526) +++ data/CVE/list 2007-03-09 02:02:46 UTC (rev 5527) @@ -103,7 +103,8 @@ CVE-2007-1264 (Enigmail 0.94.2 and earlier does not properly use the --status-fd ...) TODO: check CVE-2007-1263 (GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the ...) - - gnupg <unfixed> (low) + - gnupg <unfixed> (bug #413922; low) + - gpgme1.0 <unfixed> (low) CVE-2007-1262 RESERVED CVE-2007-1261 (Unspecified vulnerability in the reports system in OpenBiblio before ...) @@ -138,7 +139,7 @@ NOT-FOR-US: aWebNews CVE-2007-1246 (The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in ...) - mplayer <unfixed> (medium) - - xine-lib <unfixed> (medium) + - xine-lib <unfixed> (bug #414072; medium) NOTE: vlc checked, and is not affected. CVE-2007-1245 (IrfanView 3.99 allows remote attackers to cause a denial of service ...) NOT-FOR-US: IrfanView @@ -863,7 +864,7 @@ CVE-2007-1000 RESERVED CVE-2007-0999 - RESERVED + - ekiga <unfixed> (bug #414069; high) CVE-2007-0998 RESERVED CVE-2007-0997