Author: alec-guest
Date: 2006-07-11 01:07:54 +0000 (Tue, 11 Jul 2006)
New Revision: 4366
Modified:
data/CVE/list
data/DSA/list
Log:
* DSA-1108 (mutt)
* CVE-2006-3390, CVE-2006-3389 (wordpress): not worth filing a bug over
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-07-11 00:58:40 UTC (rev 4365)
+++ data/CVE/list 2006-07-11 01:07:54 UTC (rev 4366)
@@ -135,9 +135,9 @@
CVE-2006-3391 (The Execute function in iMBCContents ActiveX Control before
2.0.0.59 ...)
TODO: check
CVE-2006-3390 (WordPress 2.0.3 allows remote attackers to obtain the
installation ...)
- - wordpress <unfixed> (bug filed; unimportant)
+ - wordpress <unfixed> (unimportant)
CVE-2006-3389 (index.php in WordPress 2.0.3 allows remote attackers to obtain
...)
- - wordpress <unfixed> (bug filed; unimportant)
+ - wordpress <unfixed> (unimportant)
CVE-2006-3388 (Cross-site scripting (XSS) vulnerability in phpMyAdmin before
2.8.2 ...)
- phpmyadmin <unfixed> (bug filed; low)
CVE-2006-3387 (Directory traversal vulnerability in sources/post.php in Fusion
News ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-07-11 00:58:40 UTC (rev 4365)
+++ data/DSA/list 2006-07-11 01:07:54 UTC (rev 4366)
@@ -1,3 +1,6 @@
+[11 Jul 2006] DSA-1108 mutt - buffer overflow
+ {CVE-2006-3242}
+ [sarge] - mutt 1.5.9-2sarge2
[07 Jul 2006] DSA-1105 xine-lib - buffer overflow
{CVE-2006-2802}
[woody] - xine-lib 0.9.8-2woody5