Author: nion Date: 2007-09-30 17:06:28 +0000 (Sun, 30 Sep 2007) New Revision: 6743 Modified: data/CVE/list Log: reported CVE-2007-4752 , 444738 CVE-2007-4659 fixed in php-5.2.4-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-09-30 14:30:44 UTC (rev 6742) +++ data/CVE/list 2007-09-30 17:06:28 UTC (rev 6743) @@ -830,7 +830,7 @@ CVE-2007-4749 (The cmdjob utility in Autodesk Backburner 3.0.2 allows remote ...) NOT-FOR-US: Autodesk Backburner CVE-2007-4752 (ssh in OpenSSH before 4.7 does not properly handle when an untrusted ...) - - openssh <unfixed> (low) + - openssh <unfixed> (low; bug #444738) [etch] - openssh <no-dsa> (minor issue in weak security measure) [sarge] - openssh <no-dsa> (minor issue in weak security measure) NOTE: An exploit needs limited control over the machine running a @@ -1050,7 +1050,7 @@ - php5 <unfixed> NOTE: fixed in php5/etch svn CVE-2007-4659 (The zend_alter_ini_entry function in PHP before 5.2.4 does not ...) - - php5 <unfixed> + - php5 5.2.4-1 NOTE: fixed in php5/etch svn CVE-2007-4658 (The money_format function in PHP before 5.2.4 permits multiple (1) %i ...) - php5 <unfixed>