thr3ads.net - Secure testing commits - [Secure-testing-commits] r4234

If this information is useful, please help other people find it:
Share via:
Joey Hess
2006-Jun-15 09:45 UTC
[Secure-testing-commits] r4234 - data/CVE

Author: joeyh
Date: 2006-06-15 09:14:28 +0000 (Thu, 15 Jun 2006)
New Revision: 4234

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-06-15 08:48:12 UTC (rev 4233)
+++ data/CVE/list	2006-06-15 09:14:28 UTC (rev 4234)
@@ -1673,12 +1673,15 @@
 CVE-2006-2275 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
 	- linux-2.6 2.6.16-13
 CVE-2006-2274 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-2273 (The InstallProduct routine in the Verisign VUpdater.Install (aka
...)
 	NOT-FOR-US: Verisign
 CVE-2006-2272 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-2271 (The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17
allows ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2005-4798 (Buffer overflow in NFS readlink handling in the Linux Kernel 2.4
up to ...)
 	- linux-2.6 <not-affected>
@@ -1855,6 +1858,7 @@
 	RESERVED
 CVE-2006-2195 [horde XSS]
 	RESERVED
+	{DSA-1099-1 DSA-1098-1}
 	- horde3 3.1.1-3
 CVE-2006-2194
 	RESERVED
@@ -2626,6 +2630,7 @@
 CVE-2006-1865 (Beagle before 0.2.5 can produce certain insecure command lines
to ...)
 	- beagle 0.2.6-2 (bug #365371; medium)
 CVE-2006-1864 (Directory traversal vulnerability in smbfs in Linux 2.6.16 and
earlier ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-13
 CVE-2006-1863 (Directory traversal vulnerability in CIFS in Linux 2.6.16 and
earlier ...)
 	- linux-2.6 2.6.16-10
@@ -2639,8 +2644,10 @@
 CVE-2006-1859 (Memory leak in __setlease in fs/locks.c in Linux kernel before
...)
 	- linux-2.6 <unfixed>
 CVE-2006-1858 (SCTP in Linux kernel before 2.6.16.17 allows remote attackers to
cause ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-1857 (Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows
remote ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-1856 (Certain modifications to the Linux kernel 2.6.16 and earlier do
not ...)
 	TODO: check
@@ -3576,8 +3583,10 @@
 CVE-2006-1526 (Buffer overflow in the X render (Xrender) extension in X.org X
server ...)
 	- xorg-server 1:1.0.2-8
 CVE-2006-1525 (ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local
users ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-9
 CVE-2006-1524 (madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not
follow ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-8
 CVE-2006-1523 (The __group_complete_signal function in the RCU signal handling
...)
 	- linux-2.6 2.6.16-7
@@ -3955,6 +3964,7 @@
 CVE-2006-1369 (Cross-site scripting (XSS) vulnerability in Invision Power Board
(IPB) ...)
 	NOT-FOR-US: Invision Power Board
 CVE-2006-1368 (Buffer overflow in the USB Gadget RNDIS implementation in the
Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-1
 CVE-2006-1367 (The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly
the ...)
 	NOT-FOR-US: Motorola hardware
@@ -4006,6 +4016,7 @@
 CVE-2006-1344 (Cross-site scripting (XSS) vulnerability in VeriSign haydn.exe,
as ...)
 	NOT-FOR-US: VeriSign haydn.exe
 CVE-2006-1343 (net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and
2.6, ...)
+	{DSA-1097-1}
 	- linux-2.6 <unfixed>
 CVE-2006-1342 (net/ipv4/af_inet.c in Linux kernel 2.4 does not clear ...)
 	- linux-2.6 <unfixed>
@@ -4241,6 +4252,7 @@
 CVE-2006-1243 (Directory traversal vulnerability in install05.php in Simple PHP
Blog ...)
 	NOT-FOR-US: Simple PHP Blog 
 CVE-2006-1242 (The ip_push_pending_frames function in Linux 2.4.x and 2.6.x
before ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-4
 CVE-2006-1241 (Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and
(3) ...)
 	- firebird2 <not-affected> (Not setuid in Debian)
@@ -4650,6 +4662,7 @@
 	{DSA-1040-1}
 	- gdm 2.14.4-1
 CVE-2006-1056 (The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when
running ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-9
 	- kfreebsd-source-5.4 5.4-17
 	- xen-3.0 3.0.2+hg9656-1
@@ -5355,8 +5368,10 @@
 CVE-2006-0743 (Format string vulnerability in LocalSyslogAppender in Apache
log4net ...)
 	NOT-FOR-US: Log4Net
 CVE-2006-0742 (The die_if_kernel function in arch/ia64/kernel/unaligned.c in
Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.15-8
 CVE-2006-0741 (Linux kernel before 2.6.15.5, when running on Intel processors,
allows ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.15-8
 CVE-2006-0740
 	RESERVED
@@ -7525,8 +7540,10 @@
 CVE-2006-0040 (GNOME Evolution 2.4.2.1 and earlier allows remote attackers to
cause a ...)
 	- evolution <unfixed>
 CVE-2006-0039 (Race condition in the do_add_counters function in netfilter for
Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-14
 CVE-2006-0038 (Integer overflow in the do_replace function in netfilter for
Linux ...)
+	{DSA-1097-1}
 	- linux-2.6 2.6.16-1
 CVE-2006-0037 (ip_nat_pptp in the PPTP NAT helper
(netfilter/ip_nat_helper_pptp.c) in ...)
 	- linux-2.6 2.6.15-3
Secure testing commits - Jun 2006 - r4234 - data/CVE

[Secure-testing-commits] r4234 - data/CVE
