Author: stef-guest
Date: 2006-08-03 22:34:02 +0000 (Thu, 03 Aug 2006)
New Revision: 4496
Modified:
data/CVE/list
Log:
- CVE-2006-3918: new apache+apache2 issue (XSS)
- CVE-2006-3913: freeciv arbitrary code execution
- bugnum for apache CVE-2006-3747
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-08-03 22:11:20 UTC (rev 4495)
+++ data/CVE/list 2006-08-03 22:34:02 UTC (rev 4496)
@@ -103,7 +103,8 @@
CVE-2006-3919 (SQL injection vulnerability in index.php in SD Studio CMS allows
...)
TODO: check
CVE-2006-3918 (http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and
6.1 ...)
- TODO: check
+ - apache2 <unfixed> (bug filed; low)
+ - apache <unfixed> (bug filed; low)
CVE-2006-3917 (PHP remote file inclusion vulnerability in inc/gabarits.php in
R. ...)
TODO: check
CVE-2006-3916 (Cross-site scripting (XSS) vulnerability in snews.php in sNews
(aka ...)
@@ -113,7 +114,7 @@
CVE-2006-3914 (Cross-site scripting (XSS) vulnerability in Blackboard Academic
Suite ...)
TODO: check
CVE-2006-3913 (Buffer overflow in Freeciv 2.1.0-beta1 and earlier, and SVN 15
Jul ...)
- TODO: check
+ - freeciv <unfixed> (bug filed; medium)
CVE-2006-3912 (Stack-based buffer overflow in the SFX module in WinRAR before
3.60 ...)
TODO: check
CVE-2006-3911 (PHP remote file inclusion vulnerability in OSI Codes PHP Live!
3.2.1 ...)
@@ -529,7 +530,7 @@
TODO: check
CVE-2006-3747 (Off-by-one error in the the ldap scheme handling in the Rewrite
module ...)
{DSA-1132-1 DSA-1131-1}
- - apache <unfixed> (medium)
+ - apache <unfixed> (medium; bug 380231)
- apache2 <unfixed> (medium; bug #380182)
CVE-2006-3746 (Buffer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows
remote ...)
- gnupg 1.4.5-1 (medium)