Author: jmm-guest
Date: 2006-11-15 22:59:18 +0100 (Wed, 15 Nov 2006)
New Revision: 4970
Modified:
data/CVE/list
Log:
no-dsa for minor issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-11-15 21:53:40 UTC (rev 4969)
+++ data/CVE/list 2006-11-15 21:59:18 UTC (rev 4970)
@@ -186,13 +186,15 @@
CVE-2006-5795 (Multiple PHP remote file inclusion vulnerabilities in OpenEMR
2.8.1 ...)
NOT-FOR-US: OpenEMR
CVE-2006-5794 (Unspecified vulnerability in the sshd Privilege Separation
Monitor in ...)
- - openssh <unfixed> (low)
+ - openssh <unfixed> (unimportant)
+ NOTE: Not a direct vulnerability
CVE-2006-5793
RESERVED
CVE-2006-XXXX [obexpushd arbitrary command execution]
- obexpushd 0.4+svn10-1 (bug #397297; medium)
CVE-2006-XXXX [motion insecure tempfile creation]
- motion 3.2.3-2 (bug #393846; low)
+ [sarge] - motion <no-dsa> (Minor issue)
CVE-2006-5792 (Unspecified vulnerability in XLink Omni-NFS Enterprise allows
remote ...)
NOT-FOR-US: XLink Omni-NFS Enterprise
CVE-2006-5791 (Multiple cross-site scripting (XSS) vulnerabilities in elogd.c
in ELOG ...)
@@ -32417,6 +32419,7 @@
CVE-2004-0175 (Directory traversal vulnerability in scp for OpenSSH before
3.4p1 ...)
{CVE-2000-0992}
- openssh 1:3.9p1-1 (low; bug #270770)
+ [sarge] - openssh <no-dsa> (Minor issue)
NOTE: The directory traversal part has been fixed in OpenSSH 3.9p1.
NOTE: The "SUID/SGID across trust boundaries" issue remains, but is
NOTE: largely theoretic. This is a rediscovery of CVE-2000-0992.
@@ -39417,6 +39420,7 @@
CVE-2000-0992 (Directory traversal vulnerability in scp in sshd 1.2.xx allows a
...)
{CVE-2004-0175}
- openssh 1:3.9p1-1 (low; bug #270770)
+ [sarge] - openssh <no-dsa> (Minor issue)
NOTE: Rediscoved as CVE-2004-0175, see there.
CVE-2000-0991 (Buffer overflow in Hilgraeve, Inc. HyperTerminal client on
Windows 98, ...)
NOT-FOR-US: Microsoft