Secure testing commits - Dec 2005 - r2986 - data/CVE

Author: jmm-guest
Date: 2005-12-09 01:01:24 +0000 (Fri, 09 Dec 2005)
New Revision: 2986

Modified:
   data/CVE/list
Log:
ethereal finally fixed
curl CVEfied


Modified: data/CVE/list
==================================================================---
data/CVE/list	2005-12-08 23:58:15 UTC (rev 2985)
+++ data/CVE/list	2005-12-09 01:01:24 UTC (rev 2986)
@@ -119,7 +119,7 @@
 	NOT-FOR-US: Jax Calendar
 CVE-2005-XXXX [Insufficient variable overwrite protection in phpmyadmin]
 	- phpmyadmin <not-affected> (Apparently affects only 2.7.0)
-CVE-2005-XXXX [Off-By-One heap overflow in curl]
+CVE-2005-4077 [Off-By-One heap overflow in curl]
 	- curl 7.15.1-1 (bug #342339; medium) 
 	[woody] - curl <not-affected> (Only curl >= 7.11 is vulnerable)
 CVE-2005-XXXX [Buffer overflows in electricsheep]
@@ -2495,23 +2495,23 @@
 CVE-2005-3250 (Unknown vulnerability in Solaris 10 allows local users to cause
a ...)
 	NOT-FOR-US: Solaris
 CVE-2005-3249 (Unspecified vulnerability in the WSP dissector in Ethereal
0.10.1 to ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3248 (Unspecified vulnerability in the X11 dissector in Ethereal
0.10.12 and ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3247 (The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to
cause ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3246 (Ethereal 0.10.12 and earlier allows remote attackers to cause a
denial ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3245 (Unspecified vulnerability in the ONC RPC dissector in Ethereal
0.10.3 ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3244 (The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote
...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3243 (Multiple buffer overflows in Ethereal 0.10.12 and earlier might
allow ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3242 (Ethereal 0.10.12 and earlier allows remote attackers to cause a
denial ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3241 (Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow
remote ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3240
 	RESERVED
 CVE-2005-3238 (Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket
Option ...)
@@ -2649,7 +2649,7 @@
 	- gtk+2.0 2.6.10-2 (bug #339431; medium)
 	- gdk-pixbuf 0.22.0-11 (bug #339431; bug #339458; medium)
 CVE-2005-3184 (Buffer overflow vulnerability in the unicode_to_bytes in the
Service ...)
-	- ethereal <unfixed> (bug #334880; medium)
+	- ethereal 0.10.13-1 (bug #334880; medium)
 CVE-2005-3183 (The HTBoundary_put_block function in HTBound.c for W3C libwww
...)
 	- w3c-libwww 5.4.0-11 (bug #334443; low)
 CVE-2005-3182 (Buffer overflow in the HTTP management interface for GFI
MailSecurity ...)