Author: jmm-guest Date: 2006-07-26 21:44:24 +0000 (Wed, 26 Jul 2006) New Revision: 4458 Modified: data/CVE/list Log: konqueror dos not in sarge per testing by Alec Berryman and myself no-dsa for older ssh-krb issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-07-26 20:33:48 UTC (rev 4457) +++ data/CVE/list 2006-07-26 21:44:24 UTC (rev 4458) @@ -339,6 +339,7 @@ - armagetron <unfixed> (bug #379062; medium) CVE-2006-3672 (KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a ...) - kdebase <unfixed> (bug #378962; low) + [sarge] - kdebase <not-affected> (Doesn''t trigger a crash on Sarge) CVE-2006-3671 (Cross-site request forgery (CSRF) vulnerability in the communicate ...) - hyperestraier 1.3.3-1 (bug #379060; low) CVE-2006-3670 (Stack-based buffer overflow in Winlpd 1.26 allows remote attackers to ...) @@ -14020,6 +14021,7 @@ - openssh 1:4.2p1-1 (bug #326065; unimportant) NOTE: Not enabled in the binary build, see #326065 - openssh-krb5 <unfixed> (bug #327233; medium) + [sarge] - openssh-krb5 <no-dsa> (Intended bahaviour, see #327233) CVE-2005-2797 (OpenSSH 4.0, and other versions before 4.2, does not properly handle ...) - openssh 1:4.2p1-1 (bug #326065; medium) CVE-2005-2796 (The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and ...)