Author: jmm-guest
Date: 2005-11-22 09:46:16 +0000 (Tue, 22 Nov 2005)
New Revision: 2822
Modified:
data/CVE/list
Log:
new kernel issue
new potential issues in helix-player
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-22 09:14:20 UTC (rev 2821)
+++ data/CVE/list 2005-11-22 09:46:16 UTC (rev 2822)
@@ -2890,7 +2890,8 @@
- linux-2.6 2.6.14-3
NOTE: Send to Horms as usual
CVE-2005-2708 (The search_binary_handler function in exec.c in Linux kernel on
64-bit ...)
- TODO: check
+ - kernel-source-2.4.27 <unfixed> (medium)
+ NOTE: Pinged Horms and Dannf
CVE-2005-2707 (Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows
remote ...)
{DSA-868-1 DSA-866-1 DSA-838-1}
- mozilla-firefox 1.0.7-1 (bug #329778; medium)
@@ -3135,9 +3136,9 @@
CVE-2005-2631 (Cisco Clean Access (CCA) 3.3.0 to 3.3.9, 3.4.0 to 3.4.5, and
3.5.0 to ...)
NOT-FOR-US: Cisco
CVE-2005-2630 (Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10,
and ...)
- TODO: check
+ - helix-player <unfixed> (bug filed)
CVE-2005-2629 (Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5,
RealOne ...)
- TODO: check
+ - helix-player <unfixed> (bug filed)
CVE-2005-2628 (Macromedia Flash 6 and 7 (Flash.ocx) allows remote attackers to
...)
- flashplugin-nonfree <unfixed> (bug #339290; high)
CVE-2005-2627 (Multiple integer underflows in Kismet before 2005-08-R1 allow
remote ...)
@@ -4354,7 +4355,7 @@
CVE-2005-2339
RESERVED
CVE-2005-2338 (Multiple cross-site scripting (XSS) vulnerabilities in XOOPS
2.0.12 JP ...)
- TODO: check
+ - xoops <itp> (bug #207640)
CVE-2005-2337 (Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development
up to ...)
{DSA-864-1 DSA-862-1 DSA-860-1}
- ruby <removed>