Moritz Muehlenhoff
2007-Jan-29 19:22 UTC
[Secure-testing-commits] r5379 - in data: CVE DSA
Author: jmm-guest
Date: 2007-01-29 19:22:06 +0100 (Mon, 29 Jan 2007)
New Revision: 5379
Modified:
data/CVE/list
data/DSA/list
Log:
new bind9 DSA
please always add an explanatory note when adding unimportant notes
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-01-29 18:12:26 UTC (rev 5378)
+++ data/CVE/list 2007-01-29 18:22:06 UTC (rev 5379)
@@ -972,6 +972,7 @@
NOT-FOR-US: Sunbelt Kerio Personal Firewall
CVE-2007-0080 (Buffer overflow in the SMB_Connect_Server function in FreeRadius
1.1.3 ...)
- freeradius <unfixed> (unimportant)
+ NOTE: Data triggering the buffer overflow can only be controlled by root
CVE-2007-0079 (rblog stores sensitive information under the web root with ...)
NOT-FOR-US: rblog
CVE-2007-0078 (BattleBlog stores sensitive information under the web root with
...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2007-01-29 18:12:26 UTC (rev 5378)
+++ data/DSA/list 2007-01-29 18:22:06 UTC (rev 5379)
@@ -1,3 +1,6 @@
+[27 Jan 2007] DSA-1254-1 bind9
+ {CVE-2007-0494}
+ [sarge] - bind9 9.2.4-1sarge2
[27 Jan 2007] DSA-1253-1 mozilla-firefox
{CVE-2006-6497 CVE-2006-6498 CVE-2006-6499 CVE-2006-6501 CVE-2006-6502
CVE-2006-6503}
[sarge] - mozilla-firefox 1.0.4-2sarge15