Author: stef-guest
Date: 2006-09-20 18:48:06 +0000 (Wed, 20 Sep 2006)
New Revision: 4749
Modified:
data/CVE/list
Log:
- new gzip issues fixed
- firefox-sage fixed
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-09-20 17:53:13 UTC (rev 4748)
+++ data/CVE/list 2006-09-20 18:48:06 UTC (rev 4749)
@@ -384,9 +384,9 @@
CVE-2006-4713 (PHP remote file inclusion vulnerability in config.php in
PSYWERKS PUMA ...)
NOT-FOR-US: PSYWERKS PUMA
CVE-2006-4712 (Multiple cross-site scripting (XSS) vulnerabilities in Sage
1.3.6 ...)
- - firefox-sage <unfixed> (bug #388149; medium)
+ - firefox-sage 1.3.6-3 (bug #388149; medium)
CVE-2006-4711 (Multiple cross-site scripting (XSS) vulnerabilities in Sage
allow ...)
- - firefox-sage <unfixed> (bug #388149; medium)
+ - firefox-sage 1.3.6-3 (bug #388149; medium)
CVE-2006-4710 (Multiple cross-site scripting (XSS) vulnerabilities in NewsGator
...)
TODO: check
CVE-2006-4709 (SQL injection vulnerability in topic.php in Vikingboard 0.1b
allows ...)
@@ -1241,15 +1241,15 @@
- openssl097 0.9.7i-2 (medium)
- openssl096 <removed>
CVE-2006-4338 (unlzh.c in the LHZ component in gzip 1.3.5 allows
context-dependent ...)
- TODO: check
+ - gzip 1.3.5-15 (medium)
CVE-2006-4337 (Buffer overflow in the make_table function in the LHZ component
in ...)
- TODO: check
+ - gzip 1.3.5-15 (high)
CVE-2006-4336 (Buffer underflow in the build_tree function in unpack.c in gzip
1.3.5 allows ...)
- TODO: check
+ - gzip 1.3.5-15 (high)
CVE-2006-4335 (Array index error in the make_table function in unlzh.c in the
LZH ...)
- TODO: check
+ - gzip 1.3.5-15 (high)
CVE-2006-4334 (Unspecified vulnerability in gzip 1.3.5 allows context-dependent
...)
- TODO: check
+ - gzip 1.3.5-15 (high)
CVE-2006-4333 (The SSCOP dissector in Wireshark (formerly Ethereal) before
0.99.3 allows ...)
{DSA-1171}
- wireshark 0.99.2-5.1 (low; bug #384529)