Moritz Muehlenhoff
2006-Apr-09 09:27 UTC
[Secure-testing-commits] r3779 - in data: CVE DSA
Author: jmm-guest
Date: 2006-04-09 09:26:33 +0000 (Sun, 09 Apr 2006)
New Revision: 3779
Modified:
data/CVE/list
data/DSA/list
Log:
fix syntax
no-dsa for obscure isakmp DoS
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-04-08 21:14:25 UTC (rev 3778)
+++ data/CVE/list 2006-04-09 09:26:33 UTC (rev 3779)
@@ -6109,7 +6109,8 @@
CVE-2005-3672 (The Internet Key Exchange version 1 (IKEv1) implementation in
...)
NOT-FOR-US: StoneGate''s IKE implementation
CVE-2005-3671 (The Internet Key Exchange version 1 (IKEv1) implementation in
Openswan ...)
- - openswan 1:2.4.4-1 (bug #339082; medium)
+ - openswan 1:2.4.4-1 (bug #339082; low)
+ [sarge] - openswan <no-dsa> (Only exploitable in inherently insecure
mode of operation)
NOTE: Initial 2.4.3 didn''t fix all the issues from the NISCC report
CVE-2005-3670 (Multiple unspecified vulnerabilities in the Internet Key
Exchange ...)
NOT-FOR-US: HP-UX''s IKE implementation
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-04-08 21:14:25 UTC (rev 3778)
+++ data/DSA/list 2006-04-09 09:26:33 UTC (rev 3779)
@@ -3,7 +3,7 @@
[sarge] - cacti 0.8.6c-7sarge3
[08 Apr 2006] DSA-1030-1 moodle - several
{CVE-2006-0146 CVE-2006-0147 CVE-2006-0410 CVE-2006-0806}
- [sarge] - moodle - 1.4.4.dfsg.1-3sarge1
+ [sarge] - moodle 1.4.4.dfsg.1-3sarge1
[08 Apr 2006] DSA-1029-1 libphp-adodb - several
{CVE-2006-0146 CVE-2006-0147 CVE-2006-0410 CVE-2006-0806}
[woody] - libphp-adodb 1.51-1.2