Author: stef-guest Date: 2006-10-03 19:29:56 +0000 (Tue, 03 Oct 2006) New Revision: 4807 Modified: data/CVE/list Log: - openssl faulty CVE-2006-2940 patch fixed - new libgsf issue fixed - CVE-2006-4980: new python issue fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-10-03 14:54:02 UTC (rev 4806) +++ data/CVE/list 2006-10-03 19:29:56 UTC (rev 4807) @@ -1,3 +1,9 @@ +CVE-2006-XXXX [openssl fix for CVE-2006-2940 introduced new security bug] + - openssl097 0.9.7k-3 + - openssl 0.9.8c-3 + [sarge] - openssl 0.9.7e-3sarge4 +CVE-2006-XXXX [unspecified libgsf security issue (IDEF1622)] + - libgsf 1.14.2-1 CVE-2006-5143 RESERVED CVE-2006-5142 @@ -335,8 +341,10 @@ NOT-FOR-US: Cisco CVE-2006-4981 (Symantec Sygate NAC allows physically proximate attackers to bypass ...) NOT-FOR-US: Symantec -CVE-2006-4980 +CVE-2006-4980 [buffer overrun in repr() for unicode strings] RESERVED + - python2.4 2.4.3-9 + TODO: check other pythons CVE-2006-4979 (Direct static code injection vulnerability in cfgphpquiz/install.php ...) NOT-FOR-US: PhpQuiz CVE-2006-4978 (Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 ...)