Author: nion Date: 2008-02-05 10:05:33 +0000 (Tue, 05 Feb 2008) New Revision: 8077 Modified: data/CVE/list Log: tk and netpbm got own cve ids for latest buffer overflows Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-02-05 07:33:04 UTC (rev 8076) +++ data/CVE/list 2008-02-05 10:05:33 UTC (rev 8077) @@ -1,3 +1,9 @@ +CVE-2008-0553 [buffer overflow in tk GIF handling] + - tk8.5 8.5.0-3 + - tk8.4 8.4.17-2 + - tk8.3 8.3.5-12 +CVE-2008-0554 [buffer overflow in netpbm GIF handling] + - netpbm <unfixed> (bug #464056) CVE-2008-0564 [mailman xss as list admin] - mailman <unfixed> (low) [etch] - mailman <no-dsa> (Minor issue) @@ -24026,10 +24032,6 @@ CVE-2006-4484 (Buffer overflow in the LWZReadByte_ function in ...) - libgd2 2.0.33-5.1 (medium; bug #384838) - xloadimage <unfixed> (unimportant; bug #384841) - - tk8.5 8.5.0-3 - - tk8.4 8.4.17-2 - - tk8.3 8.3.5-12 - - netpbm <unfixed> (bug #464056) NOTE: xloadimage is a crasher only, not a security problem CVE-2006-4483 (The cURL extension files (1) ext/curl/interface.c and (2) ...) - php5 5.1.6-1 (unimportant)