Author: stef-guest Date: 2006-08-28 19:48:27 +0000 (Mon, 28 Aug 2006) New Revision: 4650 Modified: data/CVE/list Log: - CVE-2006-433[0-3]: new wireshark issues (low to medium) - CVE-2006-374[34]: new imagemagick issues (low?) - new asterisk issue (medium) Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-08-28 19:06:32 UTC (rev 4649) +++ data/CVE/list 2006-08-28 19:48:27 UTC (rev 4650) @@ -1,3 +1,17 @@ +CVE-2006-4333 [several issues fixed in wireshark 0.99.3: SSCOP dissector] + - wireshark <unfixed> (low; bug #384529) + - ethereal <removed> (low; bug #384528) +CVE-2006-4332 [several issues fixed in wireshark 0.99.3: DHCP dissector] + - wireshark <not-affected> (windows only) + - ethereal <not-affected> (windows only) +CVE-2006-4331 [several issues fixed in wireshark 0.99.3: ESP preference parser] + - wireshark <unfixed> (medium; bug #384529) + - ethereal <not-affected> (only wireshark 0.99.2 affected) +CVE-2006-4330 [several issues fixed in wireshark 0.99.3: SCSI dissector] + - wireshark <unfixed> (medium; bug #384529) + - ethereal <not-affected> (only wireshark 0.99.2 affected) +CVE-2006-XXXX [asterisk MGCP AUEP Response Handling Buffer Overflow] + - asterisk <unfixed> (medium; bug #385060) CVE-2006-XXXX [zope Arbitrary file inclusion] TODO: check zope zope-2.7 zope2.8 zope2.9 zope3 - zope2.8 2.8.8-2 @@ -1334,10 +1348,12 @@ CVE-2006-3745 (Unspecified vulnerability in the SCTP implementation in Linux 2.6.9, ...) - linux-2.6 2.6.17-7 - linux-2.6.16 <unfixed> -CVE-2006-3744 +CVE-2006-3744 [imagemagick XCF and Sun Rasterfile Buffer Overflows] RESERVED -CVE-2006-3743 + - imagemagick <unfixed> (bug #385062) +CVE-2006-3743 [imagemagick XCF and Sun Rasterfile Buffer Overflows] RESERVED + - imagemagick <unfixed> (bug #385062) CVE-2006-3742 RESERVED CVE-2006-3741