joeyh at alioth.debian.org
2007-May-22 21:14 UTC
[Secure-testing-commits] r5902 - data/CVE
Author: joeyh
Date: 2007-05-22 21:14:11 +0000 (Tue, 22 May 2007)
New Revision: 5902
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-05-22 21:04:13 UTC (rev 5901)
+++ data/CVE/list 2007-05-22 21:14:11 UTC (rev 5902)
@@ -940,6 +940,7 @@
CVE-2007-2363 (Buffer overflow in IrfanView 4.00 and earlier allows
user-assisted ...)
NOT-FOR-US: IrfanView
CVE-2007-2362 (Multiple buffer overflows in MyDNS 1.1.0 allow remote attackers
to (1) ...)
+ {DTSA-36-1}
- mydns 1:1.1.0-8
CVE-2007-2361 (Symantec Norton Ghost, Norton Save & Recovery, LiveState
Recovery, and ...)
NOT-FOR-US: Symantec
@@ -1666,7 +1667,7 @@
[sarge] - lha <no-dsa> (Non-free not supported)
[etch] - lha <no-dsa> (Non-free not supported)
CVE-2007-2029 (File descriptor leak in the PDF handler in Clam AntiVirus
(ClamAV) ...)
- {DSA-1281-1}
+ {DSA-1281-1 DTSA-37-1}
- clamav 0.90.2-1 (low; bug #418849)
NOTE: closed report: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=459
NOTE: Commit r3021 looks as if it''s just a null pointer dereference.
@@ -1743,7 +1744,7 @@
CVE-2007-1998 (Direct static code injection vulnerability in HIOX Guest Book
(HGB) ...)
NOT-FOR-US: HIOX Guest Book
CVE-2007-1997 (Integer signedness error in the (1) cab_unstore and (2)
cab_extract ...)
- {DSA-1281-1}
+ {DSA-1281-1 DTSA-37-1}
- clamav 0.90.2-1 (high)
CVE-2007-1996 (PHP remote file inclusion vulnerability in codebreak.php in
CodeBreak, ...)
NOT-FOR-US: CodeBreak
@@ -2324,7 +2325,7 @@
CVE-2007-1746
RESERVED
CVE-2007-1745 (The chm_decompress_stream function in libclamav/chmunpack.c in
Clam ...)
- {DSA-1281-1}
+ {DSA-1281-1 DTSA-37-1}
- clamav 0.90.2-1 (high)
CVE-2007-1744 (Directory traversal vulnerability in the Shared Folders feature
for ...)
NOT-FOR-US: VMware