Author: stef-guest Date: 2007-01-02 23:45:58 +0100 (Tue, 02 Jan 2007) New Revision: 5206 Modified: data/CVE/list Log: - new webcam-server issue fixed - new libsoup issue fixed - w3m CVEified Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-01-02 08:14:25 UTC (rev 5205) +++ data/CVE/list 2007-01-02 22:45:58 UTC (rev 5206) @@ -1,3 +1,7 @@ +CVE-2007-XXXX [webcam-server unspecified vulnerability] + - webcam-server 0.50-2 +CVE-2007-XXXX [libsoup parse_headers_DoS] + - libsoup 2.2.98-2 (bug #405197) CVE-2007-0015 (Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to ...) TODO: check CVE-2007-0014 @@ -137,7 +141,8 @@ CVE-2006-6773 (pages/register/register.php in Fishyshoop 0.930 beta allows remote ...) TODO: check CVE-2006-6772 (Format string vulnerability in w3m 0.5.1, when run with the dump or ...) - TODO: check + - w3m 0.5.1-5.1 (low; bug #404564) + TODO: Check w3mee, is this forked version still needed? CVE-2006-6771 (Multiple PHP remote file inclusion vulnerabilities in Irokez CMS 0.7.1 ...) TODO: check CVE-2006-6770 (Multiple PHP remote file inclusion vulnerabilities in Jinzora Media ...) @@ -319,9 +324,6 @@ CVE-2006-6749 (Buffer overflow in the parse_expression function in parse_config in ...) - openser 1.1.0-8 (medium; bug #404591) NOTE: OpenPKG-SA-2006.042 -CVE-2006-XXXX [w3m format string issue] - - w3m 0.5.1-5.1 (low; bug #404564) - TODO: Check w3mee, is this forked version still needed? CVE-2006-XXXX [insecure rpath in libflash-mozplugin] - libflash 0.4.13-9 (low; bug #399508) [etch] - libflash <no-dsa> (Not exploitable through directory writable by an unprivileged user)