stef-guest at alioth.debian.org
2008-Sep-24 22:04 UTC
[Secure-testing-commits] r9879 - data/CVE
Author: stef-guest Date: 2008-09-24 22:04:35 +0000 (Wed, 24 Sep 2008) New Revision: 9879 Modified: data/CVE/list Log: fix source package name; bugnum Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-24 21:58:56 UTC (rev 9878) +++ data/CVE/list 2008-09-24 22:04:35 UTC (rev 9879) @@ -150,8 +150,8 @@ NOT-FOR-US: Sun Management Center (SunMC) CVE-2008-4116 (Heap-based buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 ...) NOT-FOR-US: Apple -CVE-2008-XXXX [heap overflow in fraud2] - - fraud2 <unfixed> (bug #499899) +CVE-2008-XXXX [heap overflow in faad2] + - faad2 <unfixed> (bug #499899) NOTE: http://bugs.gentoo.org/show_bug.cgi?id=238445 NOTE: http://www.audiocoding.com/ NOTE: http://www.audiocoding.com/patch/main_overflow.diff @@ -176,7 +176,7 @@ CVE-2008-4110 (Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in ...) NOT-FOR-US: Microsoft CVE-2008-4107 (The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce ...) - - php5 <unfixed> (bug filed) + - php5 <unfixed> (bug #500087) CVE-2008-4106 (WordPress before 2.6.2 does not properly handle MySQL warnings about ...) TODO: check CVE-2008-4105 (JRequest in Joomla! 1.5 before 1.5.7 does not sanitize variables that ...)