Author: stef-guest Date: 2006-12-03 14:57:53 +0100 (Sun, 03 Dec 2006) New Revision: 5050 Modified: data/CVE/list Log: CVE-2006-6142: new squirrelmail XSS fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-12-03 09:52:30 UTC (rev 5049) +++ data/CVE/list 2006-12-03 13:57:53 UTC (rev 5050) @@ -76,8 +76,9 @@ RESERVED CVE-2006-6143 RESERVED -CVE-2006-6142 +CVE-2006-6142 [squirrelmail XSS] RESERVED + - squirrelmail 2:1.4.9-1 CVE-2006-6141 (Buffer overflow in Tftpd32 3.01 allows remote attackers to cause a ...) NOT-FOR-US: Tftpd32 CVE-2006-6140 (PHP remote file inclusion vulnerability in Sisfo Kampus 2006 (Semarang ...) @@ -2957,7 +2958,7 @@ - ffmpeg 0.cvs20060329-1 - xine-lib 1.1.2-1 - gst-ffmpeg <unfixed> (medium; bug #401304) - - gstreamer0.10-ffmpeg <unfixed> (medium; bug filed) + - gstreamer0.10-ffmpeg <unfixed> (medium; bug #401311) - mplayer 1.0~rc1-1 NOTE: according to the changelog, libxine (starting from 1.1.2-4) links dynamically against ffmpeg CVE-2006-4799 (Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow ...)