Author: fw Date: 2006-04-20 21:10:32 +0000 (Thu, 20 Apr 2006) New Revision: 3837 Modified: data/CVE/list Log: CVE-2006-0527: affects BIND 8 Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-04-20 18:05:05 UTC (rev 3836) +++ data/CVE/list 2006-04-20 21:10:32 UTC (rev 3837) @@ -3064,9 +3064,9 @@ [sarge] - evolution <not-affected> (Vulnerability was apparantly introduced in 2.3.1) [woody] - evolution <not-affected> (Vulnerability was apparantly introduced in 2.3.1) CVE-2006-0527 (BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, ...) - NOTE: CVE says, "due to the lack of relevant details from the vendor, it is not - NOTE: known whether this is a duplicate of an existing CVE or a brand-new issue that - NOTE: applies to BIND on other operating systems." + - bind <unfixed> (medium) + NOTE: BIND 8 is unsuitable for forwarder use because of its + NOTE: architecture. Upgrade to BIND 9 as a fix. CVE-2006-0526 (The default configuration of the America Online (AOL) client software ...) NOT-FOR-US: AOL CVE-2006-0525 (Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator ...)