Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c466b634 by Salvatore Bonaccorso at 2025-08-03T09:44:17+02:00
Build new cross-references after suffix addition to some old DSAs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -821060,7 +821060,7 @@ CVE-2007-1595 (The Asterisk Extension Language (AEL)
in pbx/pbx_ael.c in Asteris
CVE-2007-1593 (The administrative service in Symantec Veritas Volume
Replicator (VVR) ...)
NOT-FOR-US: Symantec
CVE-2007-1592 (net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3
inadvertent ...)
- {DSA-1503-2 DSA-1503-1 DSA-1304 DSA-1286-1}
+ {DSA-1503-2 DSA-1503-1 DSA-1304-1 DSA-1286-1}
- linux-2.6 2.6.20-1 (medium)
CVE-2007-1591 (VsapiNT.sys in the Scan Engine 8.0 for Trend Micro AntiVirus
14.10.104 ...)
NOT-FOR-US: Trend Micro
@@ -821693,7 +821693,7 @@ CVE-2007-1358 (Cross-site scripting (XSS)
vulnerability in certain applications
- tomcat4 <removed> (low)
[sarge] - tomcat4 <no-dsa> (Contrib not supported)
CVE-2007-1357 (The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x
before ...)
- {DSA-1304 DSA-1286-1}
+ {DSA-1304-1 DSA-1286-1}
- linux-2.6 2.6.20-1
CVE-2007-1356
REJECTED
@@ -822945,7 +822945,7 @@ CVE-2007-0960 (Unspecified vulnerability in Cisco PIX
500 and ASA 5500 Series Se
CVE-2007-0959 (Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2,
when conf ...)
NOT-FOR-US: Cisco
CVE-2007-0958 (Linux kernel 2.6.x before 2.6.20 allows local users to read
unreadable ...)
- {DSA-1304 DSA-1286-1}
+ {DSA-1304-1 DSA-1286-1}
- linux-2.6 2.6.20-1
CVE-2007-0957 (Stack-based buffer overflow in the krb5_klog_syslog function in
the ka ...)
{DSA-1276-1}
@@ -823519,7 +823519,7 @@ CVE-2007-0772 (The Linux kernel 2.6.13 and other
versions before 2.6.20.1 allows
CVE-2007-0771 (The utrace support in Linux kernel 2.6.18, and other versions,
allows ...)
- linux-2.6 <not-affected> (RHEL-specific backport, only present in -mm
tree)
CVE-2007-0770 (Buffer overflow in GraphicsMagick and ImageMagick allows
user-assisted ...)
- {DSA-1260}
+ {DSA-1260-1}
- graphicsmagick 1.1.7-12
- imagemagick 7:6.2.4.5.dfsg1-0.14 (bug #410435)
CVE-2007-1667 (Multiple integer overflows in (1) the XGetPixel function in
ImUtil.c i ...)
@@ -824308,12 +824308,12 @@ CVE-2007-0455 (Buffer overflow in the
gdImageStringFTEx function in gdft.c in GD
[sarge] - libgd2 <no-dsa> (Minor issue, hardly exploitable)
[etch] - libgd2 <no-dsa> (Minor issue, hardly exploitable)
CVE-2007-0454 (Format string vulnerability in the afsacl.so VFS module in
Samba 3.0.6 ...)
- {DSA-1257}
+ {DSA-1257-1}
- samba 3.0.23d-5 (medium)
CVE-2007-0453 (Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21
throug ...)
- samba <not-affected> (Solaris-specific vulnerability)
CVE-2007-0452 (smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated
users ...)
- {DSA-1257}
+ {DSA-1257-1}
- samba 3.0.23d-5 (low)
CVE-2007-0450 (Directory traversal vulnerability in Apache HTTP Server and
Tomcat 5.x ...)
- tomcat5 <removed> (unimportant)
@@ -826312,7 +826312,7 @@ CVE-2006-6537 (IBM WebSphere Host On-Demand 6.0, 7.0,
8.0, 9.0, and possibly 10,
CVE-2006-6536 (Cross-site scripting (XSS) vulnerability in hata.asp in Cilem
Haber Fr ...)
NOT-FOR-US: Cilem Haber Free Edition
CVE-2006-6535 (The dev_queue_xmit function in Linux kernel 2.6 can fail before
callin ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 <not-affected> (Fixed before upload into the archive;
2.6.10)
CVE-2006-6534 (Multiple cross-site scripting (XSS) vulnerabilities in
osCommerce 3.0a ...)
NOT-FOR-US: osCommerce
@@ -827320,7 +827320,7 @@ CVE-2006-6107 (Unspecified vulnerability in the
match_rule_equal function in bus
- dbus 1.0.2-1 (low)
[sarge] - dbus <no-dsa> (Minor issue)
CVE-2006-6106 (Multiple buffer overflows in the cmtp_recv_interopmsg function
in the ...)
- {DSA-1503-2 DSA-1503-1 DSA-1304}
+ {DSA-1503-2 DSA-1503-1 DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-9
CVE-2006-6105 (Format string vulnerability in the host chooser window
(gdmchooser) in ...)
- gdm 2.16.4-1 (medium; bug #403219)
@@ -827426,7 +827426,7 @@ CVE-2006-6062 (Unspecified vulnerability in Apple Mac
OS X 10.4.8, and possibly
CVE-2006-6061 (com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8,
and possi ...)
NOT-FOR-US: Apple Mac OS X
CVE-2006-6060 (The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18,
and possi ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
NOTE: Mounting filesystem partitions should be limited to root
CVE-2006-6059 (Buffer overflow in MA521nd5.SYS driver 5.148.724.2003 for
NetGear MA52 ...)
@@ -827438,7 +827438,7 @@ CVE-2006-6058 (The minix filesystem code in Linux
kernel 2.6.x before 2.6.24, in
CVE-2006-6057 (The Linux kernel 2.6.x up to 2.6.18, and possibly other
versions, on F ...)
- linux-2.6 <not-affected> (Debian kernels up to 2.6.18 didn't include
GFS)
CVE-2006-6056 (Linux kernel 2.6.x up to 2.6.18 and possibly other versions,
when SELi ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
NOTE: Mounting filesystem partitions should be limited to root
CVE-2006-6055 (Stack-based buffer overflow in A5AGU.SYS 1.0.1.41 for the
D-Link DWL-G ...)
@@ -827448,7 +827448,7 @@ CVE-2006-6054 (The ext2 file system code in Linux
kernel 2.6.x allows local user
- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
NOTE: Mounting filesystem partitions should be limited to root
CVE-2006-6053 (The ext3fs_dirhash function in Linux kernel 2.6.x allows local
users t ...)
- {DSA-1503-2 DSA-1503-1 DSA-1304}
+ {DSA-1503-2 DSA-1503-1 DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-10 (unimportant)
NOTE: Mounting filesystem partitions should be limited to root
CVE-2006-6052 (NetEpi Case Manager before 0.98 generates different error
messages dep ...)
@@ -828084,7 +828084,7 @@ CVE-2006-5759 (index.php in Rhadrix If-CMS, possibly
1.01 and 2.07, allows remot
CVE-2006-5758 (The Graphics Rendering Engine in Microsoft Windows 2000 through
2000 S ...)
NOT-FOR-US: Microsoft
CVE-2006-5757 (Race condition in the __find_get_block_slow function in the
ISO9660 fi ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-10 (low)
CVE-2006-5756
REJECTED
@@ -828092,10 +828092,10 @@ CVE-2006-5755 (Linux kernel before 2.6.18, when
running on x86_64 systems, does
{DSA-1381-2}
- linux-2.6 2.6.18.dfsg.1-10
CVE-2006-5754 (The aio_setup_ring function in Linux kernel does not properly
initiali ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 <not-affected> (Fixed before initial upload; 2.6.10)
CVE-2006-5753 (Unspecified vulnerability in the listxattr system call in Linux
kernel ...)
- {DSA-1503-2 DSA-1503-1 DSA-1356-1 DSA-1304}
+ {DSA-1503-2 DSA-1503-1 DSA-1356-1 DSA-1304-1}
- linux-2.6 2.6.20-1
CVE-2006-5752 (Cross-site scripting (XSS) vulnerability in mod_status.c in the
mod_st ...)
- apache2 2.2.4-2 (low)
@@ -829924,7 +829924,7 @@ CVE-2006-4926 (The NDIS-TDI Hooking Engine, as used
in the (1) KLICK (KLICK.SYS)
CVE-2005-4812 (The SISCO OSI stack for Windows, as used by MMS-EASE 7.10 and
earlier, ...)
NOT-FOR-US: SISCO OSI stack for Windows
CVE-2005-4811 (The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly
2.6.12 and ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 2.6.14
CVE-2006-4925 (packet.c in ssh in OpenSSH allows remote attackers to cause a
denial o ...)
- openssh 1:5.1p1-5 (unimportant)
@@ -830155,7 +830155,7 @@ CVE-2006-4816
CVE-2006-4815
RESERVED
CVE-2006-4814 (The mincore function in the Linux kernel before 2.4.33.6 does
not prop ...)
- {DSA-1503-2 DSA-1503-1 DSA-1304}
+ {DSA-1503-2 DSA-1503-1 DSA-1304-1}
- linux-2.6 2.6.18.dfsg.1-9 (low)
- kernel-patch-openvz 028.18.1
CVE-2006-4813 (The __block_prepare_write function in fs/buffer.c for Linux
kernel 2.6 ...)
@@ -830574,7 +830574,7 @@ CVE-2006-4624 (CRLF injection vulnerability in
Utils.py in Mailman before 2.1.9r
{DSA-1188-1}
- mailman 1:2.1.8-3
CVE-2006-4623 (The Unidirectional Lightweight Encapsulation (ULE)
decapsulation compo ...)
- {DSA-1304}
+ {DSA-1304-1}
- linux-2.6 2.6.18-1
CVE-2002-2217 (Multiple PHP remote file inclusion vulnerabilities in Web
Server Creat ...)
NOT-FOR-US: Data pre-dating the Security Tracker
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c466b634fb28d590bbda7a9e884d56f8d94c828a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c466b634fb28d590bbda7a9e884d56f8d94c828a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
