Secure testing commits - Dec 2005 - r2977 - data/CVE

Author: jmm-guest
Date: 2005-12-07 21:36:35 +0000 (Wed, 07 Dec 2005)
New Revision: 2977

Modified:
   data/CVE/list
Log:
claim a block
bugnums


Modified: data/CVE/list
==================================================================---
data/CVE/list	2005-12-07 21:14:19 UTC (rev 2976)
+++ data/CVE/list	2005-12-07 21:36:35 UTC (rev 2977)
@@ -1,3 +1,4 @@
+begin claimed by jmm
 CVE-2005-4066 (Total Commander 6.53 uses weak encryption to store FTP usernams
and ...)
 	TODO: check
 CVE-2005-4065 (SQL injection vulnerability in the search module in Edgewall
Trac ...)
@@ -72,6 +73,7 @@
 	TODO: check
 CVE-2005-4030 (SQL injection vulnerability in Quicksilver Forums before 1.5.1
allows ...)
 	TODO: check
+end claimed by jmm
 CVE-2005-4029 (WebEOC before 6.0.2 allows remote attackers to obtain valid
usernames ...)
 	TODO: check
 CVE-2005-4028 (Multiple cross-site scripting (XSS) vulnerabilities in aMember
allow ...)
@@ -2618,30 +2620,30 @@
 CVE-2005-3194 (Multiple buffer overflows in ALZip 6.12 (Korean), 6.1
(International), ...)
 	NOT-FOR-US: ALZip
 CVE-2005-3193 (Heap-based buffer overflow in the JPXStream::readCodestream
function ...)
-	- xpdf 3.01-3 (bug #342281; medium)
+	- xpdf 3.01-3 (bug #342281; bug #342337; medium)
 	- gpdf <unfixed> (bug #342286; medium)
 	- pdftohtml <not-affected> (Vulnerable xpdf code not contained)
 	- kdegraphics <unfixed> (bug #342287; medium)
-	- poppler <unfixed> (bug #34228; medium)
+	- poppler <unfixed> (bug #342288; medium)
 	- tetex-bin 3.0-11 (bug #342292; medium)
 	- koffice <not-affected> (Vulnerable xpdf code not contained)
 	- libextractor 0.5.8-1 (medium)
 CVE-2005-3192 [xpdf stream predictor heap overflow]
 	RESERVED
-	- xpdf 3.01-3 (bug #342281; medium)
+	- xpdf 3.01-3 (bug #342281; bug #342337; medium)
 	- gpdf <unfixed> (bug #342286; medium)
 	- pdftohtml <unfixed> (bug #342289; medium)
 	- kdegraphics <unfixed> (bug #342287; medium)
-	- poppler <unfixed> (bug #34228; medium)
+	- poppler <unfixed> (bug #342288; medium)
 	- tetex-bin 3.0-11 (bug #342292; medium)
 	- koffice <unfixed> (bug #342294; medium)
 	- libextractor 0.5.8-1 (medium)
 CVE-2005-3191 (Multiple heap-based buffer overflows in the (1) ...)
-	- xpdf 3.01-3 (bug #342281; medium)
+	- xpdf 3.01-3 (bug #342281; bug #342337; medium)
 	- gpdf <unfixed> (bug #342286; medium)
 	- pdftohtml <unfixed> (bug #342289; medium)
 	- kdegraphics <unfixed> (bug #342287; medium)
-	- poppler <unfixed> (bug #34228; medium)
+	- poppler <unfixed> (bug #342288; medium)
 	- tetex-bin 3.0-11 (bug #342292; medium)
 	- koffice <unfixed> (bug #342294; medium)
 	- libextractor 0.5.8-1 (medium)