Author: joeyh
Date: 2006-12-16 09:14:25 +0100 (Sat, 16 Dec 2006)
New Revision: 5132
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-12-16 00:29:33 UTC (rev 5131)
+++ data/CVE/list 2006-12-16 08:14:25 UTC (rev 5132)
@@ -1467,6 +1467,7 @@
CVE-2006-5876
RESERVED
CVE-2006-5875 (eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote
...)
+ {DSA-1236-1}
- enemies-of-carlotta 1.2.4-1 (medium)
CVE-2006-5874 (Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers
to ...)
{DSA-1232-1}
@@ -1478,6 +1479,7 @@
CVE-2006-5872
RESERVED
CVE-2006-5871 (smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before
...)
+ {DSA-1233}
TODO: check
CVE-2006-5870
RESERVED
@@ -1731,6 +1733,7 @@
CVE-2006-5752
RESERVED
CVE-2006-5751 (Integer overflow in the get_fdb_entries function in ...)
+ {DSA-1233}
- linux-2.6 2.6.18-8 (medium)
CVE-2006-5750 (Directory traversal vulnerability in the
DeploymentFileRepository ...)
NOT-FOR-US: JBoss
@@ -1953,6 +1956,7 @@
CVE-2006-5650 (The ICQPhone.SipxPhoneManager ActiveX control in America Online
ICQ ...)
NOT-FOR-US: ICQPhone.SipxPhoneManager
CVE-2006-5649 (Unspecified vulnerability in the "alignment check
exception handling" ...)
+ {DSA-1233}
- linux-2.6 2.6.18-4
CVE-2006-5648 (Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to
cause a ...)
TODO: check
@@ -2018,6 +2022,7 @@
CVE-2006-5620 (PHP remote file inclusion vulnerability in
include/menu_builder.php in ...)
NOT-FOR-US: MiniBILL
CVE-2006-5619 (The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c)
in ...)
+ {DSA-1233}
- linux-2.6 2.6.18-4 (low)
CVE-2006-5618 (Directory traversal vulnerability in script/cat_for_aff.php in
Netref ...)
NOT-FOR-US: Netref
@@ -2339,6 +2344,7 @@
CVE-2006-5468 (Unspecified vulnerability in the HTTP dissector in Wireshark
(formerly ...)
- wireshark 0.99.4-1 (bug #396258; medium)
CVE-2006-5467 (The cgi.rb CGI library for Ruby 1.8 allows remote attackers to
cause a ...)
+ {DSA-1235-1 DSA-1234-1}
- ruby1.8 1.8.5-3 (medium; bug #398457)
- ruby1.9 <unfixed> (medium)
NOTE: ruby1.9 not to be released with etch
@@ -2987,6 +2993,7 @@
CVE-2006-5175 (Cross-site request forgery (CSRF) vulnerability in the
administrative ...)
NOT-FOR-US: TeraStation HD-HTGL
CVE-2006-5174 (The copy_from_user function in the uaccess code in Linux kernel
2.6 ...)
+ {DSA-1233}
- linux-2.6 2.6.18-5
NOTE: s390 only, fix in 2.6.18-3 was reverted in 2.6.18-4
CVE-2006-5173 (Linux kernel does not properly save or restore EFLAGS during a
context ...)
@@ -3360,6 +3367,7 @@
CVE-2006-4998
RESERVED
CVE-2006-4997 (The clip_mkip function in net/atm/clip.c of the ATM subsystem in
Linux ...)
+ {DSA-1233}
- linux-2.6 2.6.18-1
CVE-2006-4996 (Unspecified vulnerability in JoomlaLib (com_joomlalib) before
1.2.2 ...)
NOT-FOR-US: JoomlaLib (com_joomlalib) for Joomla!
@@ -3751,6 +3759,7 @@
CVE-2006-4814
RESERVED
CVE-2006-4813 (The __block_prepare_write function in fs/buffer.c for Linux
kernel ...)
+ {DSA-1233}
- linux-2.6 2.6.13-1
CVE-2006-4812 (Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows
remote ...)
- php4 <not-affected>
@@ -4389,6 +4398,7 @@
CVE-2006-4539 ((1) includes/widgets/module_company_tickets.php and (2) ...)
NOT-FOR-US: Cerberus Helpdesk
CVE-2006-4538 (Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC
...)
+ {DSA-1233}
- linux-2.6 2.6.17-9
CVE-2006-4537 (NET$SESSION_CONTROL.EXE before 20060825 in DECnet-Plus in
OpenVMS ...)
NOT-FOR-US: OpenVMS
@@ -6268,6 +6278,7 @@
- kdebase <not-affected>
NOTE: only in Fedora
CVE-2006-3741 (The perfmonctl system call (sys_perfmonctl) in Linux kernel
2.4.x and ...)
+ {DSA-1233}
- linux-2.6 2.6.18-1
CVE-2006-3740 (Integer overflow in the scan_cidfont function in X.Org 6.8.2 and
...)
{DSA-1193-1}