Author: jmm-guest
Date: 2005-11-10 10:34:15 +0000 (Thu, 10 Nov 2005)
New Revision: 2715
Modified:
data/CVE/list
Log:
bugnums
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-10 09:24:28 UTC (rev 2714)
+++ data/CVE/list 2005-11-10 10:34:15 UTC (rev 2715)
@@ -673,7 +673,7 @@
- mad <removed>
CVE-2005-3256 (The key selection dialogue in Enigmail before 0.92.1 can
incorrectly ...)
{DSA-889-1}
- - enigmail 2:0.93-1 (medium)
+ - enigmail 2:0.93-1 (bug #335731; medium)
CVE-2005-3253
RESERVED
CVE-2005-3252 (Stack-based buffer overflow in the Back Orifice (BO)
preprocessor for ...)
@@ -1672,7 +1672,7 @@
- cupsys 1.1.23-1 (unknown)
CVE-2005-2871 (Buffer overflow in the International Domain Name (IDN) support
in ...)
{DSA-868-1 DSA-866-1 DSA-837-1}
- - mozilla-firefox 1.0.6-5 (bug #327452; bug #327802; medium)
+ - mozilla-firefox 1.0.6-5 (bug #327452; bug #327802; bug #327366; medium)
- mozilla 2:1.7.12-1 (bug #327455; medium)
NOTE: epiphany-browser is apparently fixed fix the mozilla-browser
NOTE: upload; see bug #327366
@@ -1724,7 +1724,7 @@
CVE-2005-2852 (Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and
SP3, ...)
NOT-FOR-US: Novell Netware
CVE-2005-2851 (smb4k 0.4 and other versions before 0.6.3 allows local users to
read ...)
- - smb4k 0.6.3-1 (medium)
+ - smb4k 0.6.3-1 (bug #337471; medium)
CVE-2005-2850 (SlimFTPd 3.17 allows remote attackers to cause a denial of
service ...)
NOT-FOR-US: SlimFTPD
CVE-2005-2849 (Argument injection vulnerability in Barracuda Spam Firewall
running ...)
@@ -3487,7 +3487,7 @@
{DSA-864-1 DSA-862-1 DSA-860-1}
- ruby <removed>
- ruby1.6 1.6.8-13 (medium)
- - ruby1.8 1.8.3-1 (medium)
+ - ruby1.8 1.8.3-1 (bug #332742; medium)
- ruby1.9 1.9.0+20050921-1 (medium)
CVE-2005-2336 (Cross-site scripting (XSS) vulnerability in Hiki 0.8.0 to 0.8.2
allows ...)
- hiki 0.8.2-1
@@ -6916,7 +6916,7 @@
RESERVED
CVE-2005-1527 (Eval injection vulnerability in awstats.pl in AWStats 6.4 and
earlier, ...)
{DSA-892-1}
- - awstats 6.4-1.1 (bug #322591; medium)
+ - awstats 6.4-1.1 (bug #322591; bug #334833; medium)
CVE-2005-1526 (PHP file inclusion vulnerability in config_settings.php in Cacti
...)
{DSA-764-1}
- cacti 0.8.6e-1 (bug #315703; high)
@@ -12519,7 +12519,7 @@
CVE-2005-0021 (Multiple buffer overflows in Exim before 4.43 may allow
attackers to ...)
{DSA-637-1 DSA-635-1}
- exim4 4.34-10
- - exim 3.36-13
+ - exim 3.36-13 (bug #290036)
- exim-tls <removed>
CVE-2005-0020 (Buffer overflow in playmidi before 2.4 allows local users to
execute ...)
{DSA-641-1}
@@ -13721,7 +13721,7 @@
CVE-2004-0884 (The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18
and ...)
{DSA-568-1 DSA-563-3}
- cyrus-sasl <removed>
- - cyrus-sasl2 2.1.19-1.3 (bug #275431)
+ - cyrus-sasl2 2.1.19-1.3 (bug #275431; bug #276865; bug #275432)
CVE-2004-0883 (Multiple vulnerabilities in the samba filesystem (smbfs) in
Linux ...)
- kernel-source-2.4.27 2.4.27-6
- kernel-source-2.6.8 2.6.8-13
@@ -14525,7 +14525,8 @@
{DSA-643-1}
- queue 1.30.1-5
CVE-2004-0554 (Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause
a ...)
- NOTE: this was a big deal and is fixed in all current kernels
+ - kernel-source-2.4.27 2.4.27-1
+ - linux-2.6 2.6.12-1 (bug #261521)
CVE-2004-0553
RESERVED
CVE-2004-0552 (Sophos Small Business Suite 1.00 on Windows does not properly
handle ...)