Author: joeyh
Date: 2006-06-27 21:14:28 +0000 (Tue, 27 Jun 2006)
New Revision: 4307
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-06-27 14:35:55 UTC (rev 4306)
+++ data/CVE/list 2006-06-27 21:14:28 UTC (rev 4307)
@@ -2130,15 +2130,15 @@
CVE-2006-2275 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
- linux-2.6 2.6.16-13
CVE-2006-2274 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-13
CVE-2006-2273 (The InstallProduct routine in the Verisign VUpdater.Install (aka
...)
NOT-FOR-US: Verisign
CVE-2006-2272 (Linux SCTP (lksctp) before 2.6.17 allows remote attackers to
cause a ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-13
CVE-2006-2271 (The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17
allows ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-13
CVE-2005-4798 (Buffer overflow in NFS readlink handling in the Linux Kernel 2.4
up to ...)
- linux-2.6 <not-affected>
@@ -3090,9 +3090,10 @@
CVE-2006-1865 (Beagle before 0.2.5 can produce certain insecure command lines
to ...)
- beagle 0.2.6-2 (bug #365371; medium)
CVE-2006-1864 (Directory traversal vulnerability in smbfs in Linux 2.6.16 and
earlier ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-13
CVE-2006-1863 (Directory traversal vulnerability in CIFS in Linux 2.6.16 and
earlier ...)
+ {DSA-1103}
- linux-2.6 2.6.16-10
CVE-2006-1862 (The virtual memory implementation in Linux kernel 2.6.x allows
local ...)
TODO: check
@@ -3104,10 +3105,10 @@
CVE-2006-1859 (Memory leak in __setlease in fs/locks.c in Linux kernel before
...)
- linux-2.6 <unfixed>
CVE-2006-1858 (SCTP in Linux kernel before 2.6.16.17 allows remote attackers to
cause ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-14
CVE-2006-1857 (Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows
remote ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-14
CVE-2006-1856 (Certain modifications to the Linux kernel 2.6.16 and earlier do
not ...)
TODO: check
@@ -4044,12 +4045,13 @@
CVE-2006-1526 (Buffer overflow in the X render (Xrender) extension in X.org X
server ...)
- xorg-server 1:1.0.2-8
CVE-2006-1525 (ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local
users ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-9
CVE-2006-1524 (madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not
follow ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-8
CVE-2006-1523 (The __group_complete_signal function in the RCU signal handling
...)
+ {DSA-1103}
- linux-2.6 2.6.16-7
CVE-2006-1522 (The sys_add_key function in the keyring code in Linux kernel
2.6.16.1 ...)
- linux-2.6 2.6.16-7
@@ -4425,7 +4427,7 @@
CVE-2006-1369 (Cross-site scripting (XSS) vulnerability in Invision Power Board
(IPB) ...)
NOT-FOR-US: Invision Power Board
CVE-2006-1368 (Buffer overflow in the USB Gadget RNDIS implementation in the
Linux ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-1
CVE-2006-1367 (The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly
the ...)
NOT-FOR-US: Motorola hardware
@@ -4713,7 +4715,7 @@
CVE-2006-1243 (Directory traversal vulnerability in install05.php in Simple PHP
Blog ...)
NOT-FOR-US: Simple PHP Blog
CVE-2006-1242 (The ip_push_pending_frames function in Linux 2.4.x and 2.6.x
before ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-4
CVE-2006-1241 (Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and
(3) ...)
- firebird2 <not-affected> (Not setuid in Debian)
@@ -5123,7 +5125,7 @@
{DSA-1040-1}
- gdm 2.14.4-1
CVE-2006-1056 (The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when
running ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-9
- kfreebsd-source-5.4 5.4-17
- xen-3.0 3.0.2+hg9656-1
@@ -5826,14 +5828,15 @@
- xorg-server 1:1.0.2-1
- xfree86 <not-affected>
CVE-2006-0744 (Linux kernel before 2.6.16.5 does not properly handle
uncanonical ...)
+ {DSA-1103}
- linux-2.6 2.6.16-7
CVE-2006-0743 (Format string vulnerability in LocalSyslogAppender in Apache
log4net ...)
NOT-FOR-US: Log4Net
CVE-2006-0742 (The die_if_kernel function in arch/ia64/kernel/unaligned.c in
Linux ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.15-8
CVE-2006-0741 (Linux kernel before 2.6.15.5, when running on Intel processors,
allows ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.15-8
CVE-2006-0740
RESERVED
@@ -6269,14 +6272,18 @@
CVE-2006-0559 (Format string vulnerability in the SMTP server for McAfee
WebShield ...)
NOT-FOR-US: McAfee WebShield
CVE-2006-0558 (perfmon (perfmon.c) in Linux kernel on IA64 architectures allows
local ...)
+ {DSA-1103}
- linux-2.6 <unfixed> (bug #365375; low)
CVE-2006-0557 (sys_mbind in mempolicy.c in Linux kernel 2.6.16 and earlier does
not ...)
+ {DSA-1103}
- linux-2.6 <unfixed>
CVE-2006-0556
RESERVED
CVE-2006-0555 (The Linux Kernel before 2.6.15.5 allows local users to cause a
denial ...)
+ {DSA-1103}
- linux-2.6 2.6.15-8
CVE-2006-0554 (Linux kernel 2.6 before 2.6.15.5 allows local users to obtain
...)
+ {DSA-1103}
- linux-2.6 2.6.15-8
CVE-2006-0553 (PostgreSQL 8.1.0 through 8.1.2 allows authenticated database
users to ...)
- postgresql-8.1 8.1.3-1
@@ -6582,6 +6589,7 @@
- linux-2.6 <unfixed>
CVE-2006-0456 [kernel: strlen_user() DoS on s390]
RESERVED
+ {DSA-1103}
- linux-2.6 2.6.16-1
CVE-2006-0455 (gpgv in GnuPG before 1.4.2.1, when using unattended signature
...)
{DSA-978-1}
@@ -8008,10 +8016,10 @@
CVE-2006-0040 (GNOME Evolution 2.4.2.1 and earlier allows remote attackers to
cause a ...)
- evolution <unfixed>
CVE-2006-0039 (Race condition in the do_add_counters function in netfilter for
Linux ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-14
CVE-2006-0038 (Integer overflow in the do_replace function in netfilter for
Linux ...)
- {DSA-1097-1}
+ {DSA-1103 DSA-1097-1}
- linux-2.6 2.6.16-1
CVE-2006-0037 (ip_nat_pptp in the PPTP NAT helper
(netfilter/ip_nat_helper_pptp.c) in ...)
- linux-2.6 2.6.15-3
@@ -11080,6 +11088,7 @@
CVE-2005-3360 (The installation of Trend Micro PC-Cillin Internet Security 2005
12.00 ...)
NOT-FOR-US: Trend Micro PC-Cillin Internet Security 2005
CVE-2005-3359 (The atm module in Linux kernel 2.6 before 2.6.14 allows local
users to ...)
+ {DSA-1103}
- linux-2.6 2.6.14
CVE-2005-3358 (Linux kernel before 2.6.15 allows local users to cause a denial
of ...)
{DSA-1017-1}