Author: jmm-guest Date: 2006-03-16 14:08:19 +0000 (Thu, 16 Mar 2006) New Revision: 3627 Modified: data/CVE/list Log: unzip fixed crossfire fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-03-16 13:04:33 UTC (rev 3626) +++ data/CVE/list 2006-03-16 14:08:19 UTC (rev 3627) @@ -21,7 +21,7 @@ CVE-2000-1239 (The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM ...) TODO: check CVE-2006-1236 (Buffer overflow in the SetUp function in socket/request.c in CrossFire ...) - - crossfire <unfixed> (medium) + - crossfire 1.9.0-2 (medium) CVE-2006-1235 (Directory traversal vulnerability in admin/deleteuser.php in HitHost ...) TODO: check CVE-2006-1234 (SQL injection vulnerability in index.php in DSCounter 1.2, with ...) @@ -1921,7 +1921,7 @@ CVE-2006-0419 (BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 ...) NOT-FOR-US: BEA WebLogic CVE-2005-4667 (Buffer overflow in UnZip 5.50 and earlier allows user-complicit ...) - - unzip <unfixed> (low; bug #349794) + - unzip 5.52-7 (low; bug #349794) CVE-2006-0418 (Eval injection vulnerability in 123 Flash Chat Server 5.0 and 5.1 ...) NOT-FOR-US: 123 Flash Chat Server CVE-2006-0417 (SQL injection vulnerability in login.php in miniBloggie 1.0 and ...)