Author: joeyh Date: 2006-05-18 21:14:24 +0000 (Thu, 18 May 2006) New Revision: 3970 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-18 20:24:25 UTC (rev 3969) +++ data/CVE/list 2006-05-18 21:14:24 UTC (rev 3970) @@ -27,7 +27,7 @@ CVE-2006-2347 (E-Business Designer (eBD) 3.1.4 and earlier allows remote attackers to ...) NOT-FOR-US: E-Business Designer CVE-2006-2346 (vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows ...) - - vpopmail <not-affected> (vulnerability introduced in 5.4.14) + - vpopmail <not-affected> (vulnerability introduced in 5.4.14) NOTE: Unable to reach CVS to determine if prior versions are affected NOTE: Micah will return to this one CVE-2006-2345 (Cross-site scripting (XSS) vulnerability in inc/elementz.php in ...) @@ -253,6 +253,7 @@ CVE-2006-2238 (Heap-based buffer overflow in Apple QuickTime 7.1 allows remote ...) TODO: check CVE-2006-2237 (The web interface for AWStats 6.4 and 6.5, when statistics updates are ...) + {DSA-1058-1} - awstats 6.5-2 (bug #365909; medium) CVE-2006-2236 (Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) ...) - quake3 <itp> (bug #337937)