Author: stef-guest
Date: 2007-02-18 19:36:01 +0100 (Sun, 18 Feb 2007)
New Revision: 5473
Modified:
data/CVE/list
Log:
- new isdnutils/asterisk-chan-capi/linux-2.6 issue
- smb4k 0.8.0-1 fixes CVE-2007-0474
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-02-18 17:09:26 UTC (rev 5472)
+++ data/CVE/list 2007-02-18 18:36:01 UTC (rev 5473)
@@ -1,3 +1,7 @@
+CVE-2007-XXXX [capi_{cmsg,message}2str not thread-safe; vulnerable to buffer
overflow]
+ - isdnutils <unfixed> (bug #408530)
+ - asterisk-chan-capi <unfixed> (bug #411293)
+ - linux-2.6 <unfixed> (bug #411294)
CVE-2007-0981 (Mozilla based browsers allows remote attackers to bypass the
same ...)
- iceweasel <unfixed> (bug #411192; high)
- xulrunner <unfixed> (high)
@@ -1224,7 +1228,7 @@
CVE-2007-0475 (Multiple stack-based buffer overflows in utilities/smb4k_*.cpp
in ...)
- smb4k 0.8.0-1 (low)
CVE-2007-0474 (Smb4K before 0.8.0 allow local users, when present on the Smb4K
...)
- - smb4k <unfixed> (low)
+ - smb4k 0.8.0-1 (low)
CVE-2007-0473 (The writeFile function in core/smb4kfileio.cpp in Smb4K before
0.8.0 ...)
- smb4k 0.8.0-1 (low)
CVE-2007-0472 (Multiple race conditions in Smb4K before 0.8.0 allow local users
to ...)