Author: stef-guest Date: 2007-02-12 22:56:00 +0100 (Mon, 12 Feb 2007) New Revision: 5446 Modified: data/CVE/list Log: - new dokuwiki issue fixed - rar+unrar-nonfree fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-02-12 21:17:29 UTC (rev 5445) +++ data/CVE/list 2007-02-12 21:56:00 UTC (rev 5446) @@ -1,3 +1,5 @@ +CVE-2007-XXXX [dokuwiki conf directory accessible by web users] + - dokuwiki 0.0.20061106-3 (bug #410557) CVE-2007-0870 (Unspecified vulnerability in Microsoft Word 2000 allows remote ...) TODO: check CVE-2007-0869 (Cross-site scripting (XSS) vulnerability in the Attachment Manager ...) @@ -58,10 +60,10 @@ CVE-2007-0856 (TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module ...) NOT-FOR-US: Trend Micro Anti-Rootkit Common Module CVE-2007-0855 (Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR ...) - - rar <unfixed> (high; bug #410582) + - rar 1:3.7b1-1 (high; bug #410582) [sarge] - rar <no-dsa> (Non-free) [etch] - rar <no-dsa> (Non-free) - - unrar-nonfree <unfixed> (high; bug #410580) + - unrar-nonfree 1:3.7.3-1 (high; bug #410580) [sarge] - unrar-nonfree <no-dsa> (Non-free) [etch] - unrar-nonfree <no-dsa> (Non-free) NOTE: amavid-new automatically uses "rar -p-" or "unrar -p-",