joeyh at alioth.debian.org
2007-Jun-10 21:14 UTC
[Secure-testing-commits] r5991 - data/CVE
Author: joeyh
Date: 2007-06-10 21:14:09 +0000 (Sun, 10 Jun 2007)
New Revision: 5991
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-06-10 12:15:32 UTC (rev 5990)
+++ data/CVE/list 2007-06-10 21:14:09 UTC (rev 5991)
@@ -528,11 +528,13 @@
- php5 <unfixed>
NOTE: Fix from 5.2.3 was ineffective
CVE-2007-2871 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4,
and ...)
+ {DSA-1300-1}
- iceweasel <unfixed> (low)
- iceape <unfixed> (low)
- firefox <removed> (low)
- mozilla <removed> (low)
CVE-2007-2870 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4,
and ...)
+ {DSA-1300-1}
- iceweasel <unfixed> (medium)
- iceape <unfixed> (medium)
- firefox <removed> (medium)
@@ -543,11 +545,13 @@
- firefox <removed> (unimportant)
- mozilla <removed> (unimportant)
CVE-2007-2868 (Multiple vulnerabilities in the JavaScript engine for Mozilla
Firefox ...)
+ {DSA-1300-1}
- iceweasel <unfixed> (medium)
- iceape <unfixed> (medium)
- firefox <removed> (medium)
- mozilla <removed> (medium)
CVE-2007-2867 (Multiple vulnerabilities in the layout engine for Mozilla
Firefox ...)
+ {DSA-1300-1}
- iceweasel <unfixed> (medium)
- iceape <unfixed> (medium)
- firefox <removed> (medium)
@@ -1685,6 +1689,7 @@
CVE-2007-2357 (Cross-site scripting (XSS) vulnerability in mods/Core/result.php
in ...)
NOT-FOR-US: SineCms
CVE-2007-2356 (Stack-based buffer overflow in the set_color_table function in
...)
+ {DSA-1301-1}
- gimp 2.2.14-2
CVE-2007-2355 (The get_url function in DODS_Dispatch.pm for the CGI_server in
OPeNDAP ...)
NOT-FOR-US: OPeNDAP
@@ -3503,6 +3508,7 @@
CVE-2007-1559 (Stack-based buffer overflow in SonicDVDDashVRNav.dll in Roxio
...)
NOT-FOR-US: Roxio
CVE-2007-1558 (The APOP protocol allows remote attackers to guess the first 3
...)
+ {DSA-1300-1}
NOT-FOR-US: No practical security implications
CVE-2007-1557 (Format string vulnerability in F-Secure Anti-Virus Client
Security ...)
NOT-FOR-US: F-Secure
@@ -3993,6 +3999,7 @@
CVE-2007-1363 (Multiple SQL injection vulnerabilities in DropAFew before 0.2.1
allow ...)
NOT-FOR-US: DropAFew
CVE-2007-1362 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4,
and ...)
+ {DSA-1300-1}
TODO: check
CVE-2007-1361 (Cross-site scripting (XSS) vulnerability in
virtuemart_parser.php in ...)
NOT-FOR-US: VirtueMart