Author: stef-guest Date: 2006-07-16 08:20:51 +0000 (Sun, 16 Jul 2006) New Revision: 4395 Modified: data/CVE/list Log: some linux-2.6.16 fixed, one new issue (CVE-2006-3626) Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-07-15 16:59:49 UTC (rev 4394) +++ data/CVE/list 2006-07-16 08:20:51 UTC (rev 4395) @@ -1,3 +1,6 @@ +CVE-2006-3626 [linux "nasty /proc vulnerability"] + - linux-2.6.16 2.6.16-17 + - linux-2.6 <unfixed> CVE-2006-XXXX [insufficient form variable escaping] - webauth 3.5.2-1 CVE-2006-3590 (Unspecified vulnerability in mso.dll, as used by Microsoft PowerPoint ...) @@ -1355,7 +1358,7 @@ TODO: check CVE-2006-2934 (SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux ...) - linux-2.6 2.6.17-3 - - linux-2.6.16 <unfixed> + - linux-2.6.16 2.6.16-17 CVE-2006-2933 RESERVED CVE-2006-2932 @@ -2491,8 +2494,8 @@ - gdm <unfixed> (bug #375281; medium) [sarge] - gdm <not-affected> (Vulnerable code has only been introduced with 2.8) CVE-2006-2451 (The suid_dumpable support in Linux kernel 2.6.13 up to versions before ...) - - linux-2.6 2.6.17-3 - - linux-2.6.16 <unfixed> (high) + - linux-2.6 2.6.17-3 (high) + - linux-2.6.16 2.6.16-17 (high) CVE-2006-2450 RESERVED CVE-2006-2449 (KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users ...)