stef-guest at alioth.debian.org
2007-Aug-28 21:22 UTC
[Secure-testing-commits] r6421 - data/CVE
Author: stef-guest Date: 2007-08-28 21:22:59 +0000 (Tue, 28 Aug 2007) New Revision: 6421 Modified: data/CVE/list Log: new clamav issue already fixed, old clamav issues CVEified Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-08-28 21:21:50 UTC (rev 6420) +++ data/CVE/list 2007-08-28 21:22:59 UTC (rev 6421) @@ -49,7 +49,7 @@ CVE-2007-4561 (Heap-based buffer overflow in the RTSP service in Helix DNA Server ...) TODO: check CVE-2007-4560 (clamav-milter in ClamAV before 0.91.2, when run in black hole mode, ...) - TODO: check + - clamav 0.91.2-1 (high) CVE-2007-4559 (Directory traversal vulnerability in the (1) extract and (2) ...) TODO: check CVE-2007-4558 (Directory traversal vulnerability in extract.c in star before 1.5a84 ...) @@ -158,7 +158,8 @@ CVE-2007-4511 (The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply ...) TODO: check CVE-2007-4510 (ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and ...) - TODO: check + - clamav 0.91.2-1 + [sarge] - clamav <not-affected> (Vulnerable code not present) CVE-2007-4509 (SQL injection vulnerability in index.php in the EventList component ...) TODO: check CVE-2007-4508 (Stack-based buffer overflow in Rebellion Asura engine, as used for the ...) @@ -476,12 +477,6 @@ - clamav 0.91.2-1 [etch] - clamav <not-affected> (Vulnerable code not present) [sarge] - clamav <not-affected> (Vulnerable code not present) -CVE-2007-XXXX [clamav NULL deref RTF DoS] - - clamav 0.91.2-1 - [sarge] - clamav <not-affected> (Vulnerable code not present) -CVE-2007-XXXX [clamav NULL deref RFC2397 DoS] - - clamav 0.91.2-1 - [sarge] - clamav <not-affected> (Vulnerable code not present) CVE-2007-XXXX [pam usb wrongly allows authentication without password in ssh sessions] - libpam-usb 0.4.1-1 (medium) NOTE: see http://sourceforge.net/mailarchive/forum.php?thread_name=7D75703BC8E1C149BF78A1E79AAAB169B8A2E4%40svits28.main.ad.rit.edu&forum_name=pamusb-devel