Author: jmm-guest Date: 2007-01-23 23:44:01 +0100 (Tue, 23 Jan 2007) New Revision: 5340 Modified: data/CVE/list Log: snort no-dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-01-23 22:42:55 UTC (rev 5339) +++ data/CVE/list 2007-01-23 22:44:01 UTC (rev 5340) @@ -531,7 +531,8 @@ CVE-2006-6932 (Multiple SQL injection vulnerabilities in Image Gallery with Access ...) NOT-FOR-US: Image Gallery CVE-2006-6931 (Algorithmic complexity vulnerability in Snort before 2.6.1, during ...) - - snort <unfixed> (bug #407421) + - snort <unfixed> (low; bug #407421) + [sarge] - snort <no-dsa> (Minor issue) CVE-2006-6930 (SQL injection vulnerability in viewad.asp in Rapid Classified 3.1 ...) NOT-FOR-US: Rapid Classified CVE-2006-6929 (Multiple cross-site scripting (XSS) vulnerabilities in Rapid ...) @@ -811,7 +812,7 @@ - kdegraphics <unfixed> (unimportant) - koffice <unfixed> (unimportant) - poppler 0.4.5-5.1 (unimportant) - - xpdf-reader <unfixed> (bug #406852; unimportant) + - xpdf <unfixed> (bug #406852; unimportant) NOTE: hardly a security issue; if someone sends someone a crafted PDF file triggering NOTE: such an endless loop the user will simply abort kpdf and never look at NOTE: that file again, this is only denial of service by a _very_ far stretch