joeyh at alioth.debian.org
2008-Apr-24 21:14 UTC
[Secure-testing-commits] r8606 - data/CVE
Author: joeyh Date: 2008-04-24 21:14:15 +0000 (Thu, 24 Apr 2008) New Revision: 8606 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-04-24 20:34:35 UTC (rev 8605) +++ data/CVE/list 2008-04-24 21:14:15 UTC (rev 8606) @@ -1,6 +1,7 @@ CVE-2008-1925 [remote trigger buffer overflow] - inspircd 1.1.18+dfsg-1 (low) CVE-2008-1924 [phpMyAdmin file disclosure] + {DSA-1557-1} - phpmyadmin 4:2.11.5.2-1 NOTE: PMASA-2008-3, CVE id requested NOTE: http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin/branches/QA_2_9/phpMyAdmin/libraries/tbl_replace_fields.inc.php?r1=11211&r2=11210&pathrev=11211 @@ -839,6 +840,7 @@ [etch] - comix <no-dsa> (Minor issue) NOTE: comix can''t be used in a non-interactive setup thus the impact level CVE-2008-1567 (phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) ...) + {DSA-1557-1} - phpmyadmin 2.11.5.1 (unimportant) NOTE: http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-2 NOTE: It is a workaround for the limited security that PHP has for @@ -969,6 +971,7 @@ CVE-2008-1475 (The xml-rpc server in Roundup 1.4.4 does not check property ...) - roundup <not-affected> (xml-rpc code introduced in 1.4.0) CVE-2008-1474 (Multiple unspecified vulnerabilities in Roundup before 1.4.4 have ...) + {DSA-1554-1} - roundup 1.3.3-3.1 (low; bug #472643) CVE-2008-1473 (The Altiris Client Service (AClient.exe) in Symantec Altiris ...) NOT-FOR-US: Symantec Altiris @@ -1180,6 +1183,7 @@ CVE-2008-1381 RESERVED CVE-2008-1380 (The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird ...) + {DSA-1555-1} - iceweasel 2.0.0.14-1 - icedove <unfixed> - iceape 1.1.9-2 @@ -1722,6 +1726,7 @@ CVE-2008-1150 (The virtual private dial-up network (VPDN) component in Cisco IOS ...) NOT-FOR-US: Cisco IOS CVE-2008-1149 (phpMyAdmin before 2.11.5 accesses $_REQUEST to obtain some parameters ...) + {DSA-1557-1} - phpmyadmin 4:2.11.5-1 (low) [etch] - phpmyadmin <no-dsa> (Minor issue) [sarge] - phpmyadmin <not-affected> (Vulnerable code not present)