joeyh at alioth.debian.org
2007-Oct-24 09:14 UTC
[Secure-testing-commits] r7084 - data/CVE
Author: joeyh
Date: 2007-10-24 09:14:09 +0000 (Wed, 24 Oct 2007)
New Revision: 7084
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-10-24 02:33:36 UTC (rev 7083)
+++ data/CVE/list 2007-10-24 09:14:09 UTC (rev 7084)
@@ -2490,6 +2490,7 @@
CVE-2007-4740 (The HPRevolutionRegistryManager ActiveX control in ...)
NOT-FOR-US: HPRevolutionRegistryManager
CVE-2007-4739 (reprepro 1.3.0 through 2.2.3 does not properly verify signatures
when ...)
+ {DSA-1394-1}
- reprepro 2.2.4-1 (high; bug #440535)
NOTE: patch for etch in the BTS
[sarge] - reprepro <not-affected> (Vulnerable code introduced in 1.3.0)
@@ -4699,6 +4700,7 @@
CVE-2007-3771 (Stack-based buffer overflow in the Internet E-mail Auto-Protect
...)
NOT-FOR-US: Symantec Antivirus
CVE-2007-3770 (The terminal_helper_execute function in terminal/terminal.c in
Xfce ...)
+ {DSA-1393-1}
- xfce4-terminal 0.2.6-3 (bug #437454)
CVE-2007-3769 (Cross-site scripting (XSS) vulnerability in the mirrored server
...)
NOT-FOR-US: SurgeFTP
@@ -9380,7 +9382,7 @@
CVE-2007-1800 (Cisco Secure ACS does not require authentication when Cisco
Trust ...)
NOT-FOR-US: Cisco
CVE-2007-1799 (Directory traversal vulnerability in torrent.cpp in KTorrent
before ...)
- {DSA-1373-1}
+ {DSA-1373-2 DSA-1373-1}
- ktorrent 2.1.4.dfsg.1-1 (medium; bug #432007)
CVE-2007-1798 (Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3
allows ...)
NOT-FOR-US: IBM AIX