Author: jmm-guest
Date: 2006-11-19 19:49:40 +0100 (Sun, 19 Nov 2006)
New Revision: 4979
Modified:
data/CVE/list
Log:
embedded copy of libmms not exploitable within xine-lib,
the other issues are pending
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-11-19 12:50:06 UTC (rev 4978)
+++ data/CVE/list 2006-11-19 18:49:40 UTC (rev 4979)
@@ -8480,7 +8480,8 @@
CVE-2006-2200 (Stack-based buffer overflow in libmms, as used by (a) MiMMS
0.0.9 and ...)
- libmms 0.2-7 (bug #374577; medium)
- mimms 2.0.0-1 (bug #374577; medium)
- - xine-lib 1.1.2-2 (bug #374577; medium)
+ - xine-lib 1.1.2-2 (bug #374577; unimportant)
+ NOTE: Not exploitable within xine, as alloced buffer are large enough
CVE-2006-2199 (Unspecified vulnerability in Java Applets in OpenOffice.org
1.1.x (aka ...)
{DSA-1104}
- openoffice.org 2.0.3-1