Secure testing commits - May 2006 - r3907 - data/CVE

Author: stef-guest
Date: 2006-05-02 17:41:55 +0000 (Tue, 02 May 2006)
New Revision: 3907

Modified:
   data/CVE/list
Log:
ethereal fixed
gcc fixed
egroupware dropped phpldapadmin


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-05-02 16:52:58 UTC (rev 3906)
+++ data/CVE/list	2006-05-02 17:41:55 UTC (rev 3907)
@@ -255,7 +255,7 @@
 	- dnsmasq 2.30-1 (medium)
 CVE-2006-2016 (Multiple cross-site scripting (XSS) vulnerabilities in
phpLDAPadmin ...)
 	- phpldapadmin <unfixed> (bug #365313; low)
-	- egroupware <unfixed> (bug #365314; low)
+	- egroupware 1.2-1.dfsg-1 (bug #365314; low; phpldapadmin dropped)
 CVE-2006-2015 (Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows
remote ...)
 	NOT-FOR-US: SL_site
 CVE-2006-2014 (Directory traversal vulnerability in gallerie.php in SL_site 1.0
...)
@@ -422,23 +422,23 @@
 CVE-2006-1941 (Neon Responder 5.4 for LANsurveyor allows remote attackers to
cause a ...)
 	NOT-FOR-US: Neon Responder
 CVE-2006-1940 (Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14
allows ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1939 (Multiple unspecified vulnerabilities in Ethereal 0.9.x up to
0.10.14 ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1938 (Multiple unspecified vulnerabilities in Ethereal 0.8.x up to
0.10.14 ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1937 (Multiple unspecified vulnerabilities in Ethereal 0.10.x up to
0.10.14 ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1936 (Buffer overflow in Ethereal 0.8.5 up to 0.10.14 allows remote
...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1935 (Buffer overflow in Ethereal 0.9.15 up to 0.10.14 allows remote
...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1934 (Multiple buffer overflows in Ethereal 0.10.x up to 0.10.14 allow
...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1933 (Multiple unspecified vulnerabilities in Ethereal 0.10.x up to
0.10.14 ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1932 (Off-by-one error in the OID printing routine in Ethereal 0.10.x
up to ...)
-	- ethereal <unfixed> (bug #364758; medium)
+	- ethereal 0.99.0-1 (bug #364758; medium)
 CVE-2006-1931 (The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking
sockets, ...)
 	NOTE: the redhat bugzilla entry says this is fixed in 1.8.3
 	NOTE: the fix is definitely not in 1.8.2-7sarge2	
@@ -510,7 +510,7 @@
 CVE-2006-1903 (Multiple cross-site scripting (XSS) vulnerabilities in UserLand
Manila ...)
 	NOT-FOR-US: UserLand Manila
 CVE-2006-1902 (fold_binary in fold-const.c in GNU Compiler Collection (gcc) 4.1
...)
-	- gcc-4.1 (bug #356896; low)
+	- gcc-4.1 4.1.0-2 (bug #356896; low)
 CVE-2006-1901 (Mozilla Camino 1.0 and earlier allow remote attackers to cause a
...)
 	NOT-FOR-US: Mozilla Camino
 CVE-2006-1900 (Multiple buffer overflows in World Wide Web Consortium (W3C)
Amaya ...)