Moritz Muehlenhoff
2006-May-19 06:29 UTC
[Secure-testing-commits] r3975 - in data: CVE DSA
Author: jmm-guest
Date: 2006-05-19 06:27:25 +0000 (Fri, 19 May 2006)
New Revision: 3975
Modified:
data/CVE/list
data/DSA/list
Log:
resmgr CVEfied and fixed through DSA
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-05-19 06:22:43 UTC (rev 3974)
+++ data/CVE/list 2006-05-19 06:27:25 UTC (rev 3975)
@@ -447,7 +447,7 @@
CVE-2006-2149 (PHP remote file inclusion vulnerability in sources/lostpw.php in
...)
NOT-FOR-US: Aardvark Topsites
CVE-2006-2147 (resmgrd in resmgr for SUSE Linux and other distributions does
not ...)
- TODO: check
+ - resmgr 1.0-4 (low)
CVE-2006-2146 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
TODO: check
CVE-2006-2145 (Multiple SQL injection vulnerabilities in index.php in HB-NS
1.1.6 ...)
@@ -1277,8 +1277,6 @@
- thunderbird 1.5.0.2-1
CVE-2005-4785 (Cross-site scripting (XSS) vulnerability in QuickBlogger 1.4 and
...)
NOT-FOR-US: QuickBlogger
-CVE-2006-XXXX [resmgr access restriction bypass]
- - resmgr 1.0-4 (low)
CVE-2006-1789 (Directory traversal vulnerability in pajax_call_dispatcher.php
in ...)
NOT-FOR-US: pajax
CVE-2006-1788 (Adobe Document Server for Reader Extensions 6.0, during log on,
...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-05-19 06:22:43 UTC (rev 3974)
+++ data/DSA/list 2006-05-19 06:27:25 UTC (rev 3975)
@@ -36,6 +36,7 @@
[woody] - asterisk 0.1.11-3woody1
[sarge] - asterisk 1:1.0.7.dfsg.1-2sarge2
[30 Apr 2006] DSA-1047-1 resmgr - programming error
+ {DSA-2006-2147}
[sarge] - resmgr 1.0-2sarge2
[27 Apr 2006] DSA-1046-1 mozilla - several
{CVE-2006-1732 CVE-2005-2353 CVE-2005-4134 CVE-2006-0292 CVE-2006-0293
CVE-2006-0748 CVE-2006-0749 CVE-2006-0884 CVE-2006-1045 CVE-2006-1529
CVE-2006-1530 CVE-2006-1531 CVE-2006-1723 CVE-2006-1724 CVE-2006-1727
CVE-2006-1728 CVE-2006-1729 CVE-2006-1730 CVE-2006-1731 CVE-2006-1733
CVE-2006-1734 CVE-2006-1735 CVE-2006-1736 CVE-2006-1737 CVE-2006-1738
CVE-2006-1739 CVE-2006-1740 CVE-2006-1741 CVE-2006-1742 CVE-2006-1790}