Secure testing commits - Mar 2006 - r3693 - data/CVE

Author: micah
Date: 2006-03-25 21:51:47 +0000 (Sat, 25 Mar 2006)
New Revision: 3693

Modified:
   data/CVE/list
Log:
Added bug num for libphp-adodb and uploaded a NMU for libphp-adodb


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-03-24 21:26:44 UTC (rev 3692)
+++ data/CVE/list	2006-03-25 21:51:47 UTC (rev 3693)
@@ -1249,7 +1249,7 @@
 CVE-2006-0807 (Stack-based buffer overflow in NJStar Chinese and Japanese Word
...)
 	NOT-FOR-US: NJStar
 CVE-2006-0806 (Multiple cross-site scripting (XSS) vulnerabilities in ADOdb
4.71 ...)
-	- libphp-adodb <unfixed>
+	- libphp-adodb 4.72-0.1 (bug #358872; medium)
 CVE-2006-0805 (The CAPTCHA functionality in php-Nuke 6.0 through 7.9 uses fixed
...)
 	NOT-FOR-US: php-Nuke
 CVE-2006-0804 (Off-by-one error in TIN 1.8.0 and earlier might allow attackers
to ...)
@@ -2247,7 +2247,7 @@
 CVE-2006-0411 (claro_init_local.inc.php in Claroline 1.7.2 uses guessable
session ...)
 	NOT-FOR-US: Claroline
 CVE-2006-0410 (SQL injection vulnerability in ADOdb before 4.71, when using
...)
-	- libphp-adodb <unfixed> (medium; bug #349985)
+	- libphp-adodb 4.72-0.1 (medium; bug #349985)
 CVE-2006-0409 (Cross-site scripting (XSS) vulnerability in index.php in
Pixelpost ...)
 	NOT-FOR-US: Pixelpost Photoblog
 CVE-2006-0408 (rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local
users ...)
@@ -2906,9 +2906,9 @@
 CVE-2006-0148 (NetSarang Xlpd 2.1 allows remote attackers to cause a denial of
...)
 	NOT-FOR-US: NetSarang Xlpd
 CVE-2006-0147 (Dynamic code evaluation vulnerability in tests/tmssql.php test
script ...)
-	- libphp-adodb <unfixed> (medium; bug #349985)
+	- libphp-adodb 4.72-0.1 (medium; bug #349985)
 CVE-2006-0146 (The server.php test script in ADOdb for PHP before 4.70, as used
in ...)
-	- libphp-adodb <unfixed> (medium; bug #349985)
+	- libphp-adodb 4.72-0.1 (medium; bug #349985)
 CVE-2006-0145 (The kernfs_xread function in kernfs in NetBSD 1.6 through 2.1,
and ...)
 	NOT-FOR-US: NetBSD
 CVE-2006-0144 (The proxy server feature in go-pear.php in PHP PEAR 0.2.2 allows
...)