Author: nion Date: 2008-02-02 00:15:45 +0000 (Sat, 02 Feb 2008) New Revision: 8069 Modified: data/CVE/list Log: one sdl-image issue cve id assigned new issue in sdl-image unfixed (CVE-2008-0544) Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-02-01 18:19:35 UTC (rev 8068) +++ data/CVE/list 2008-02-02 00:15:45 UTC (rev 8069) @@ -189,10 +189,11 @@ - openssh <unfixed> (bug #463011) CVE-2008-XXXX [exempi buffer overflow in GIF ReadHeader() function] - exempi 1.99.7-1 (bug #454297) -CVE-2008-XXXX [buffer overflow in libsdl-image] +CVE-2008-0544 [heap based buffer overflow in IMG_LoadLBM_RW in libsdl-image] + - sdl-image1.2 <unfixed> (medium) + NOTE: maintainer is aware of this +CVE-2007-6697 [buffer overflow in libsdl-image in GIF handling] - sdl-image1.2 1.2.6-2 (medium) - NOTE: CVE id requested, maybe a dup of CVE-2006-4484 - NOTE: see http://www.securityfocus.com/archive/1/486853/30/30/threaded CVE-2008-0410 (HTTP File Server (HFS) before 2.2c allows remote attackers to obtain ...) TODO: check CVE-2008-0409 (Cross-site scripting (XSS) vulnerability in HTTP File Server (HFS) ...)