Author: stef-guest Date: 2006-05-09 19:08:08 +0000 (Tue, 09 May 2006) New Revision: 3927 Modified: data/CVE/list Log: yet another libtiff issue CVE-2006-1993 seems to affect mozilla as well Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-09 17:04:03 UTC (rev 3926) +++ data/CVE/list 2006-05-09 19:08:08 UTC (rev 3927) @@ -314,7 +314,7 @@ CVE-2006-2121 (PHP remote file include vulnerability in admin/config_settings.tpl.php ...) TODO: check CVE-2006-2120 (The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers ...) - TODO: check + - tiff 3.8.1 (bug filed; medium) CVE-2006-2119 (PHP remote file inclusion vulnerability in event/index.php in Artmedic ...) TODO: check CVE-2006-2118 (JMK''s Picture Gallery allows remote attackers to bypass authentication ...) @@ -629,6 +629,7 @@ CVE-2006-1993 (Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote ...) - firefox 1.5.dfsg+1.5.0.3-1 [sarge] - mozilla-firefox <not-affected> + - mozilla <unfixed> CVE-2006-XXXX [typo3 mailforms can be abused to send spam] - typo3-src <unfixed> (bug #364350) CVE-2006-XXXX [moinmoin XSS]