[Secure-testing-commits] r5192 - data/CVE

Stefan Fritsch Wed, 27 Dec 2006 15:49:48 -0800

Author: stef-guest
Date: 2006-12-28 00:49:42 +0100 (Thu, 28 Dec 2006)
New Revision: 5192


Modified:
   data/CVE/list
Log:
CVE-2005-4816: proftpd issue fixed in etch/sid but not sarge

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2006-12-27 23:31:02 UTC (rev 5191)
+++ data/CVE/list       2006-12-27 23:49:42 UTC (rev 5192)
@@ -142,11 +142,12 @@
        - gconf2 <unfixed> (low; bug #404743)
        [sarge] - gconf2 <no-dsa> (Minor nuisance, not much of a security 
problem)
 CVE-2005-4816 (Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows 
remote ...)
-       TODO: check
+       - proftpd-dfsg 1.2.10+1.3.0rc5-1
+       [sarge] - proftpd <unfixed> (bug filed; medium)
 CVE-2003-1314 (PHP remote file inclusion vulnerability in admin/auth.php in 
...)
-       TODO: check
+       NOT-FOR-US: EternalMart Guestbook (EMGB)
 CVE-2003-1313 (Multiple PHP remote file inclusion vulnerabilities in 
EternalMart ...)
-       TODO: check
+       NOT-FOR-US: EternalMart Mailing List Manager (EMLM)
 CVE-2006-6749 (Buffer overflow in the parse_expression function in 
parse_config in ...)
        - openser 1.1.0-8 (medium; bug #404591)
        NOTE: OpenPKG-SA-2006.042
@@ -946,7 +947,7 @@
 CVE-2006-6375 (Cross-site scripting (XSS) vulnerability in display.php in 
Simple ...)
        NOT-FOR-US: Simple machines Forum
 CVE-2006-6374 (Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 
allow ...)
-       - phpmyadmin <unfixed> (low; bug filed)
+       - phpmyadmin <unfixed> (low; bug #404744)
        [sarge] - phpmyadmin <no-dsa> (CRLF not backportable to Sarge)
 CVE-2006-6373 (PhpMyAdmin 2.7.0-pl2 allows remote attackers to obtain 
sensitive ...)
        - phpmyadmin <unfixed> (unimportant)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r5192 - data/CVE

Reply via email to