Author: fw
Date: 2006-02-07 09:02:27 +0000 (Tue, 07 Feb 2006)
New Revision: 3438
Modified:
data/CVE/list
Log:
CVE-2005-3632, CVE-2005-3662: netpbm-free fixed in NMU
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-02-07 09:00:32 UTC (rev 3437)
+++ data/CVE/list 2006-02-07 09:02:27 UTC (rev 3438)
@@ -3660,7 +3660,7 @@
CVE-2005-3663 (Unquoted Windows search path vulnerability in Kaspersky
Anti-Virus 5.0 ...)
NOT-FOR-US: Kaspersky AV
CVE-2005-3662 (Off-by-one buffer overflow in pnmtopng before 2.39, when using
the ...)
- - netpbm-free <unfixed> (medium; bug #351639)
+ - netpbm-free 2:10.0-10.1 (medium; bug #351639)
CVE-2005-3661 (Dell TrueMobile 2300 Wireless Broadband Router running firmware
...)
NOT-FOR-US: Dell hardware issue
CVE-2005-3660 (Linux kernel 2.4 and 2.6 allows attackers to cause a denial of
service ...)
@@ -3727,7 +3727,7 @@
NOT-FOR-US: SAP Web Application Server
CVE-2005-3632 (Multiple buffer overflows in pnmtopng in netpbm 10.0 and earlier
allow ...)
{DSA-904-1}
- - netpbm-free <unfixed> (medium; bug #351639)
+ - netpbm-free 2:10.0-10.1 (medium; bug #351639)
TODO: Check, whether this is the same as CVE-2005-3662
CVE-2005-3631 (udev does not properly set permissions on certain files in
/dev/input, ...)
NOTE: does not appear to affect debian, redhat-specific