Moritz Muehlenhoff
2007-Jan-17 21:34 UTC
[Secure-testing-commits] r5289 - in data: CVE DSA
Author: jmm-guest
Date: 2007-01-17 21:34:18 +0100 (Wed, 17 Jan 2007)
New Revision: 5289
Modified:
data/CVE/list
data/DSA/list
Log:
cacti DSA
grsec FUD
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-01-17 20:13:38 UTC (rev 5288)
+++ data/CVE/list 2007-01-17 20:34:18 UTC (rev 5289)
@@ -79,7 +79,9 @@
CVE-2007-0258 (Cross-site scripting (XSS) vulnerability in index.php in (1)
Fastilo ...)
NOT-FOR-US: Fastilo
CVE-2007-0257 (Unspecified vulnerability in the expand_stack function in
grsecurity ...)
- - kernel-patch-grsecurity2 <unfixed> (medium; bug #407350)
+ - kernel-patch-grsecurity2 <unfixed> (unimportant; bug #407350)
+ NOTE: This is most possibly scam:
http://www.grsecurity.net/news.php#digitalfud
+ NOTE: If this ever turns real we can re-raise severity.
CVE-2007-0256 (VideoLAN VLC 0.8.6a allows remote attackers to cause a denial of
...)
- vlc <unfixed> (low; bug #407290)
CVE-2007-0255 (XINE 0.99.4 allows user-assisted remote attackers to cause a
denial of ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2007-01-17 20:13:38 UTC (rev 5288)
+++ data/DSA/list 2007-01-17 20:34:18 UTC (rev 5289)
@@ -1,3 +1,6 @@
+[17 Jan 2007] DSA-1250-1 cacti
+ {CVE-2006-6799}
+ [sarge] - cacti 0.8.6c-7sarge4
[15 Jan 2007] DSA-1249-1 xfree86
{CVE-2006-6101 CVE-2006-6102 CVE-2006-6103}
[sarge] - xfree86 4.3.0.dfsg.1-14sarge3