Secure testing commits - Jun 2007 - r5966 - data/CVE

Author: fw
Date: 2007-06-02 08:00:02 +0000 (Sat, 02 Jun 2007)
New Revision: 5966

Modified:
   data/CVE/list
Log:
CVE-2007-2808: gnatsweb
CVE-2007-2807: eggdrop
CVE-2007-2799: file fixed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-06-02 07:41:37 UTC (rev 5965)
+++ data/CVE/list	2007-06-02 08:00:02 UTC (rev 5966)
@@ -334,9 +334,9 @@
 CVE-2007-2809 (Buffer overflow in the transfer manager in Opera before 9.21 for
...)
 	TODO: check
 CVE-2007-2808 (Cross-site scripting (XSS) vulnerability in gnatsweb.pl in
Gnatsweb ...)
-	TODO: check
+	- gnatsweb <unfixed> (low; bug #427156)
 CVE-2007-2807 (Stack-based buffer overflow in mod/server.mod/servrmsg.c in
Eggdrop ...)
-	TODO: check
+	- eggdrop <unfixed> (medium; bug #427157)
 CVE-2007-2806 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
 	TODO: check
 CVE-2007-2805 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
@@ -352,7 +352,7 @@
 CVE-2007-2800
 	RESERVED
 CVE-2007-2799 (Integer overflow in the &quot;file&quot; program 4.20,
when running on 32-bit ...)
-	TODO: check
+	- file 4.21-1 (medium)	
 CVE-2007-2798
 	RESERVED
 CVE-2006-7205 (The array_fill function in ext/standard/array.c in PHP 4.4.2 and
5.1.2 ...)