alec-guest at alioth.debian.org
2007-Jul-06 16:53 UTC
[Secure-testing-commits] r6106 - data/CVE
Author: alec-guest Date: 2007-07-06 16:53:28 +0000 (Fri, 06 Jul 2007) New Revision: 6106 Modified: data/CVE/list Log: CVE-2007-3507 bugnum, CVE-2007-3506 bug filed Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-07-06 16:51:55 UTC (rev 6105) +++ data/CVE/list 2007-07-06 16:53:28 UTC (rev 6106) @@ -15,10 +15,10 @@ - glibc <unfixed> (unimportant) NOTE: Not security-relevant CVE-2007-3507 (Stack-based buffer overflow in the local__vcentry_parse_value function ...) - - flac123 <unfixed> (medium; bug filed) + - flac123 <unfixed> (medium; bug #432008) CVE-2007-3506 (The ft_bitmap_assure_buffer function in src/base/ftbimap.c in FreeType ...) - - freetype <unfixed> (medium) - TODO: File bug + - freetype <unfixed> (medium; bug filed) + NOTE: may be a freetype 2.3 issue (we have 2.2) CVE-2007-3505 (Multiple directory traversal vulnerabilities in QuickTalk forum 1.3 ...) NOT-FOR-US: QuickTalk forum CVE-2007-3504 (Sun Java Web Start in JDK and JRE 5.0 Update 11 and earlier, and Java ...)