Author: stef-guest Date: 2006-02-23 14:05:06 +0000 (Thu, 23 Feb 2006) New Revision: 3527 Modified: data/CVE/list Log: critical tar issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-02-23 13:32:51 UTC (rev 3526) +++ data/CVE/list 2006-02-23 14:05:06 UTC (rev 3527) @@ -1255,8 +1255,9 @@ - koffice <unfixed> (medium) - libextractor 0.5.10-1 (medium) - pdfkit.framework 0.8-4 (medium) -CVE-2006-0300 - RESERVED +CVE-2006-0300 [buffer overflow in tar] + - tar <unfixed> (bug #354091; high) + [woody] - tar <unaffected> CVE-2006-0299 (The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird ...) - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected) - mozilla <not-affected> (E4X not implemented in Mozilla 1.7)