Author: joeyh
Date: 2006-08-27 21:14:31 +0000 (Sun, 27 Aug 2006)
New Revision: 4643
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-08-27 20:10:47 UTC (rev 4642)
+++ data/CVE/list 2006-08-27 21:14:31 UTC (rev 4643)
@@ -1443,7 +1443,7 @@
CVE-2006-3696 (filtnt.sys in Outpost Firewall Pro before 3.51.759.6511 (462)
allows ...)
NOT-FOR-US: Outpost Firewall Pro
CVE-2006-3694 (Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow
remote ...)
- {DSA-1139-1}
+ {DSA-1157 DSA-1139-1}
- ruby1.8 1.8.4-3 (bug #378029; medium)
- ruby1.9 1.9.0+20060609-1 (medium)
CVE-2006-3693 (Rocks Clusters 4.1 and earlier allows local users to gain
privileges ...)
@@ -2662,6 +2662,7 @@
RESERVED
CVE-2006-3124 [streamripper buffer overflow]
RESERVED
+ {DSA-1158}
- streamripper 1.61.25-2
CVE-2006-3123 (Multiple integer overflows in the (1) dodecrypt and (2)
doencrypt ...)
{DSA-1138-1}
@@ -4250,6 +4251,7 @@
CVE-2006-2450 (auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass
...)
- libvncserver 0.8.2-1 (high; bug #376824)
CVE-2006-2449 (KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local
users ...)
+ {DSA-1156}
- kdebase 4:3.5.2-2 (bug #374002; medium)
CVE-2006-2448 (Linux kernel before 2.6.16.21 and 2.6.17, when running on
PowerPC, ...)
- linux-2.6 2.6.16-15
@@ -5461,6 +5463,7 @@
[sarge] - ethereal 0.10.10-2sarge5 (bug #364758; medium)
[woody] - ethereal 0.9.4-1woody15 (bug #364758; medium)
CVE-2006-1931 (The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking
sockets, ...)
+ {DSA-1157}
NOTE: the redhat bugzilla entry says this is fixed in 1.8.3
NOTE: the fix is definitely not in 1.8.2-7sarge2
- ruby1.8 1.8.3