Author: joeyh
Date: 2006-12-01 09:14:24 +0100 (Fri, 01 Dec 2006)
New Revision: 5035
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-11-30 22:51:34 UTC (rev 5034)
+++ data/CVE/list 2006-12-01 08:14:24 UTC (rev 5035)
@@ -12,8 +12,10 @@
CVE-2006-6172 (Buffer overflow in the asmrp_eval function for Real Media input
plugin ...)
TODO: check xine, etc
CVE-2006-6171 (** DISPUTED ** ...)
+ {DSA-1218}
- proftpd-dfsg 1.3.0-13 (low; bug #399070)
CVE-2006-6170 (Buffer overflow in the tls_x509_name_oneline function in the
mod_tls ...)
+ {DSA-1222-1}
- proftpd-dfsg 1.3.0-16 (medium; bug #400793)
CVE-2003-1310 (The DeviceIoControl function in the Norton Device Driver
(NAVAP.sys) ...)
NOT-FOR-US: Norton
@@ -762,7 +764,7 @@
CVE-2006-5816 (Multiple PHP remote file inclusion vulnerabilities in Dmitry
Sheiko ...)
NOT-FOR-US: Business Card Web Builder
CVE-2006-5815 (Stack-based buffer overflow in the sreplace function in ProFTPD
1.3.0 ...)
- {DSA-1218}
+ {DSA-1222-1}
- proftpd-dfsg 1.3.0-15 (bug #399070; high)
CVE-2006-5814 (Unspecified vulnerability in Novell eDirectory allows remote
attackers ...)
NOT-FOR-US: Novell eDirectory
@@ -2221,7 +2223,6 @@
CVE-2006-5144 (Cross-site scripting (XSS) vulnerability in userupload.php in
...)
NOT-FOR-US: OlateDownload
CVE-2006-XXXX [unspecified libgsf security issue (IDEF1622)]
- {DSA-1221-1}
- libgsf 1.14.2-1
[sarge] - libgsf 1.11.1-1sarge1
NOTE: DSA-1221-1