Author: alec-guest Date: 2006-06-14 21:52:59 +0000 (Wed, 14 Jun 2006) New Revision: 4212 Modified: data/CVE/list Log: * CVE-2006-3005: libjpeg62 is not affected * CVE-2006-3005: libjpeg is affected (low) * CVE-2006-2997: zope-zms is affected (low) Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-06-14 21:40:28 UTC (rev 4211) +++ data/CVE/list 2006-06-14 21:52:59 UTC (rev 4212) @@ -9,7 +9,8 @@ CVE-2006-3006 (Cross-site scripting (XSS) vulnerability in iFoto 0.20, and possibly ...) NOT-FOR-US: iFoto CVE-2006-3005 (The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is ...) - TODO: check + - libjpeg62 <not-affected> (--max-mem is set during configure) + - libjpeg-mmx <unfixed> (bug filed; low) CVE-2006-3004 (Multiple cross-site scripting (XSS) vulnerabilities in Ez Ringtone ...) NOT-FOR-US: Ez Ringtone CVE-2006-3003 (details.php in Easy Ad-Manager allows remote attackers to obtain the ...) @@ -25,7 +26,7 @@ CVE-2006-2998 (PHP remote file inclusion vulnerability in board/post.php in free ...) NOT-FOR-US: not packaged for Debian CVE-2006-2997 (Cross-site scripting (XSS) vulnerability in ZMS 2.9 and earlier, when ...) - TODO: check + - zope-zms <unfixed> (bug filed; low) CVE-2006-2996 (PHP remote file inclusion vulnerability in inc/design.inc.php in ...) TODO: check CVE-2006-2995 (Multiple PHP remote file inclusion vulnerabilities in WebprojectDB ...)