Neil McGovern
2006-Jun-15 08:45 UTC
[Secure-testing-commits] r4231 - data/CVE data/DTSA website
Author: neilm
Date: 2006-06-15 08:42:40 +0000 (Thu, 15 Jun 2006)
New Revision: 4231
Modified:
data/CVE/list
data/DTSA/list
website/list.html
Log:
Release DTSA-29-1 : Blender
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-06-15 06:16:13 UTC (rev 4230)
+++ data/CVE/list 2006-06-15 08:42:40 UTC (rev 4231)
@@ -363,7 +363,7 @@
CVE-2006-2832 (Cross-site scripting (XSS) vulnerability in the upload module
...)
- drupal 4.5.8-1.1 (medium)
CVE-2006-2831 (Drupal 4.6.x before 4.6.8 and 4.7.x before 4.7.2, when running
under ...)
- TODO: check
+ - drupal <unfixed> (high)
NOTE: This CVE references the same Drupal security advisory as CVE-2006-2832;
NOTE: I believe it is fixed in 4.5.8-1.1, but I don''t grok PHP.
Mailed sesse@
NOTE: for confirmation.
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2006-06-15 06:16:13 UTC (rev 4230)
+++ data/DTSA/list 2006-06-15 08:42:40 UTC (rev 4231)
@@ -81,4 +81,3 @@
[June 15th, 2006] DTSA-29-1 Blender - heap-based buffer overflow
{CVE-2005-4470 }
- Blender 2.37a-1.1etch1
- TODO: unreleased
Modified: website/list.html
==================================================================---
website/list.html 2006-06-15 06:16:13 UTC (rev 4230)
+++ website/list.html 2006-06-15 08:42:40 UTC (rev 4231)
@@ -91,6 +91,8 @@
<dd>potential data corruption when installed seduid root</dd>
<dt>[January 25th, 2005] <a
href=''DTSA/DTSA-28-1.html''>DTSA-28-1
gpdf</a></dt>
<dd>multiple vulnerabilities</dd>
+<dt>[June 15th, 2006] <a
href=''DTSA/DTSA-29-1.html''>DTSA-29-1
Blender</a></dt>
+<dd>heap-based buffer overflow</dd>
</dl>
<!-- footer -->
<hr>