Secure testing commits - Mar 2007 - r5570 - data/CVE

Author: joeyh
Date: 2007-03-21 21:14:22 +0000 (Wed, 21 Mar 2007)
New Revision: 5570

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-03-21 21:04:11 UTC (rev 5569)
+++ data/CVE/list	2007-03-21 21:14:22 UTC (rev 5570)
@@ -19,6 +19,7 @@
 CVE-2007-1508 (Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in
...)
 	TODO: check
 CVE-2007-1507 (The default configuration in OpenAFS 1.4.x before 1.4.4 and
1.5.x ...)
+	{DSA-1271-1}
 	TODO: check
 CVE-2007-1506 (Cross-site scripting (XSS) vulnerability in ...)
 	TODO: check
@@ -372,6 +373,7 @@
 CVE-2007-1344 (Multiple buffer overflows in src/ezstream.c in Ezstream before
0.3.0 ...)
 	NOT-FOR-US: Ezstream
 CVE-2007-1343 (includes/functions.php in Craig Knudsen WebCalendar before 1.0.5
does ...)
+	{DSA-1267-1}
 	- webcalendar <unfixed> (high)
 CVE-2007-1342 (Cross-site scripting (XSS) vulnerability in admincp/index.php in
...)
 	NOT-FOR-US: vBulletin
@@ -652,6 +654,7 @@
 CVE-2007-1264 (Enigmail 0.94.2 and earlier does not properly use the
--status-fd ...)
 	TODO: check
 CVE-2007-1263 (GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from
the ...)
+	{DSA-1266-1}
 	- gnupg 1.4.6-2 (bug #413922; low)
 	- gpgme1.0 1.1.2-3 (bug #414170; low)
 	- gnupg2 2.0.3-1
@@ -3357,11 +3360,14 @@
 	RESERVED
 CVE-2007-0239
 	RESERVED
+	{DSA-1270-1}
 	- openoffice.org 2.0.4.dfsg.2-6
 CVE-2007-0238
 	RESERVED
+	{DSA-1270-1}
 	- openoffice.org 2.0.4.dfsg.2-6
 CVE-2007-0237 (The ndeb-binary feature in Lookup (lookup-el) allows local users
to ...)
+	{DSA-1269-1}
 	- lookup-el 1.4-5 (low)
 CVE-2007-0236 (Double-free vulnerability in the _ATPsndrsp function in Apple
Mac OS X ...)
 	NOT-FOR-US: Mac OS X
@@ -4542,6 +4548,7 @@
 CVE-2007-0003 (pam_unix.so in Linux-PAM 0.99.7.0 allows context-dependent
attackers ...)
 	- pam <not-affected> (Only pam 0.99.7 affected)
 CVE-2007-0002 (Multiple heap-based buffer overflows in WordPerfect Document
...)
+	{DSA-1270-1 DSA-1268-1}
 	- libwpd 0.8.9-1
 	NOTE: openoffice.org changelog indicates libwpd is included but not used
 	- openoffice.org 2.0.4.dfsg.2-6