joeyh at alioth.debian.org
2007-Dec-12 21:14 UTC
[Secure-testing-commits] r7604 - data/CVE
Author: joeyh
Date: 2007-12-12 21:14:11 +0000 (Wed, 12 Dec 2007)
New Revision: 7604
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-12-12 18:01:27 UTC (rev 7603)
+++ data/CVE/list 2007-12-12 21:14:11 UTC (rev 7604)
@@ -394,6 +394,7 @@
CVE-2007-6133 (PHP remote file inclusion vulnerability in
admin/kfm/initialise.php in ...)
NOT-FOR-US: DevMass Shopping Cart
CVE-2007-6183 (Format string vulnerability in the mdiag_initialize function in
...)
+ {DSA-1431-1}
- ruby-gnome2 0.16.0-10 (medium; bug #453689)
CVE-2007-6171 (SQL injection vulnerability in the Postgres Realtime Engine ...)
- asterisk 1:1.4.15~dfsg-1 (medium)
@@ -432,6 +433,7 @@
CVE-2007-6122 (The default_encrypt function in encrypt.c in IRC Services before
...)
NOT-FOR-US: IRC Services
CVE-2007-6110 (Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6 ...)
+ {DSA-1429-1}
- htdig 1:3.2.0b6-4 (low; bug #453278)
[sarge] - htdig <not-affected> (Vulnerable code not present)
CVE-2007-6109 (Stack-based buffer overflow in emacs allows user-assisted
attackers to ...)
@@ -1256,6 +1258,7 @@
CVE-2007-5796 (Cross-site scripting (XSS) vulnerability in the management
console in ...)
NOT-FOR-US: Blue Coat ProxySG
CVE-2007-5794 (Race condition in nss_ldap, when used in applications that use
pthread ...)
+ {DSA-1430-1}
- libnss-ldap 256-1 (bug #453868)
CVE-2007-5839 (The e_hostname function in commands.c in BitchX 1.1a allows
local ...)
- ircii-pana <removed> (low; bug #449149)