Secure testing commits - Sep 2006 - r4726 - data/CVE

Author: jmm-guest
Date: 2006-09-13 20:41:57 +0000 (Wed, 13 Sep 2006)
New Revision: 4726

Modified:
   data/CVE/list
Log:
kernel ext/nfs fixed
record some firefox issues from 1.5.0.2 as fixed
ncompress fixed in sid
clamav unimportant


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-09-13 19:28:55 UTC (rev 4725)
+++ data/CVE/list	2006-09-13 20:41:57 UTC (rev 4726)
@@ -2827,7 +2827,7 @@
 	{DSA-1112}
 	- mysql-dfsg-5.0 5.0.22-1
 CVE-2006-3468 (Linux kernel 2.6.x, when using both NFS and EXT3, allows remote
...)
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.17-6
 CVE-2006-3467 (Integer overflow in FreeType before 2.2 allows remote attackers
to ...)
 	- freetype 2.2.1-5 (bug #379920; medium)
 	- libxfont 1:1.2.0-2 (medium; bug #383353)
@@ -7420,7 +7420,7 @@
 	NOT-FOR-US: PHP Classifieds
 CVE-2006-1531 (Unspecified vulnerability in Firefox and Thunderbird before
1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -7430,7 +7430,7 @@
 	NOTE: default configuration.
 CVE-2006-1530 (Unspecified vulnerability in Firefox and Thunderbird before
1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -7440,7 +7440,7 @@
 	NOTE: default configuration.
 CVE-2006-1529 (Unspecified vulnerability in Firefox and Thunderbird before
1.5.0.2, ...)
 	{DSA-1046-1}
-	- firefox <unfixed> (medium)
+	- firefox 1.5.0.2-1 (medium)
 	- mozilla-firefox <not-affected> (pre-1.5 version not vulnerable)
 	- thunderbird 1.5.0.2-1 (low)
 	- mozilla-thunderbird <not-affected> (pre-1.5 version not vulnerable)
@@ -8303,7 +8303,7 @@
 	RESERVED
 CVE-2006-1168 (The decompress function in compress42.c in (1) ncompress 4.2.4
and (2) ...)
 	{DSA-1149-1}
-	- ncompress 4.2.4-15sarge2
+	- ncompress 4.2.4-16
 CVE-2006-1167
 	RESERVED
 CVE-2006-1165 (Cross-site scripting (XSS) vulnerability in the mediamanager
module in ...)
@@ -15052,7 +15052,7 @@
 CVE-2005-3230 (Multiple interpretation error in unspecified versions of Panda
...)
 	NOT-FOR-US: Panda Antivirus
 CVE-2005-3229 (Multiple interpretation error in unspecified versions of ClamAV
...)
-	- clamav <unfixed> (low)
+	- clamav <unfixed> (unimportant)
 	[sarge] - clamav <no-dsa> (Should rather be fixed in the buggy (fringe)
RAR unpackers)
 CVE-2005-3228 (Multiple interpretation error in unspecified versions of Ikarus
...)
 	NOT-FOR-US: Ikarus Antivirus