[Secure-testing-commits] r6002 - data/CVE
Author: fw Date: 2007-06-16 08:14:25 + (Sat, 16 Jun 2007) New Revision: 6002 Modified: data/CVE/list Log: CVE-2007-3231: mecab CVE-2007-3227: rails Modified: data/CVE/list === --- data/CVE/list 2007-06-15 09:14:07 UTC (rev 6001) +++ data/CVE/list 2007-06-16 08:14:25 UTC (rev 6002) @@ -29,7 +29,7 @@ CVE-2007-3232 (The IBM TotalStorage DS400 with firmware 4.15 uses a blank password ...) TODO: check CVE-2007-3231 (Buffer overflow in MeCab before 0.96 has unknown impact and attack ...) - TODO: check + - mecab unfixed (bug #429174) CVE-2007-3230 (PHP remote file inclusion vulnerability in phphtml.php in Idan Sofer ...) TODO: check CVE-2007-3229 (index.php in Singapore Gallery allows remote attackers to obtain ...) @@ -37,7 +37,7 @@ CVE-2007-3228 (PHP remote file inclusion vulnerability in ...) TODO: check CVE-2007-3227 (Cross-site scripting (XSS) vulnerability in the to_json function in ...) - TODO: check + - rails unfixed (bug #429177) CVE-2007-3226 (Cross-site scripting (XSS) vulnerability in dotProject before 2.1 RC2 ...) TODO: check CVE-2007-3225 (Unspecified vulnerability in Sun Java System Directory Server (slapd) ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6006 - data/CVE
Author: fw Date: 2007-06-16 09:51:35 + (Sat, 16 Jun 2007) New Revision: 6006 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2007-06-16 09:50:54 UTC (rev 6005) +++ data/CVE/list 2007-06-16 09:51:35 UTC (rev 6006) @@ -70,19 +70,19 @@ - glpi unfixed (bug #429192) - wordpress unfixed (bug #429194) CVE-2007-3214 (SQL injection vulnerability in style.php in e-Vision CMS 2.02 and ...) - TODO: check + NOT-FOR-US: e-Vision CMS CVE-2007-3213 (Multiple cross-site scripting (XSS) vulnerabilities in comments.cgi in ...) - TODO: check + NOT-FOR-US: Sporum Forum CVE-2007-3212 (Multiple cross-site scripting (XSS) vulnerabilities in links.php in ...) - TODO: check + NOT-FOR-US: Beehive Forum CVE-2007-3211 (Cross-site scripting (XSS) vulnerability in 404.php in Domain ...) - TODO: check + NOT-FOR-US: Domain Technologie Control (DTC) CVE-2007-3210 (Stack-based buffer overflow in nptoken.mox in the Cellosoft Tokens ...) - TODO: check + NOT-FOR-US: Cellosoft Tokens Object CVE-2007-3209 (Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses ...) - mail-notification unfixed (low; bug #429200) CVE-2007-3208 (CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 ...) - TODO: check + NOT-FOR-US: YaBB CVE-2007-3207 RESERVED CVE-2007-3206 @@ -91,47 +91,47 @@ - php4 unfixed (low) - php5 unfixed (low) CVE-2007-3204 (SQL injection vulnerability in auth.php in Just For Fun Network ...) - TODO: check + NOT-FOR-US: Just For Fun Network Management System (JFFNMS) CVE-2007-3203 (Stack-based buffer overflow in smtpdll.dll in the SMTP service in ...) - TODO: check + NOT-FOR-US: 602Pro LAN SUITE CVE-2007-3202 (Cross-site scripting (XSS) vulnerability in the rich text editor in ...) - TODO: check + NOT-FOR-US: Webwiz CVE-2007-3201 (Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 ...) - TODO: check + NOT-FOR-US: Windows Privacy Tray (WinPT) CVE-2007-3200 (NMASINST in Novell Modular Authentication Service (NMAS) 3.1.2 and ...) - TODO: check + NOT-FOR-US: Novell CVE-2007-3199 (Unrestricted file upload vulnerability in Link Request Contact Form ...) - TODO: check + NOT-FOR-US: Link Request Contact Form CVE-2007-3198 (Cross-site scripting (XSS) vulnerability in comments.php in Maran PHP ...) - TODO: check + NOT-FOR-US: Maran PHP Blog CVE-2007-3197 (SQL injection vulnerability in vBSupport.php in vBSupport 1.1 before ...) - TODO: check + NOT-FOR-US: vBulletin CVE-2007-3196 (SQL injection vulnerability in vBSupport.php in vSupport Integrated ...) - TODO: check + NOT-FOR-US: VBulletin CVE-2007-3195 (Cross-site scripting (XSS) vulnerability in index.php in ERFAN WIKI ...) - TODO: check + NOT-FOR-US: ERFAN WIKI CVE-2007-3194 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: myBloggie CVE-2007-3193 (lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the ...) - phpwiki unfixed (low; bug #429201) CVE-2007-3192 (admin/setup.php in Just For Fun Network Management System (JFFNMS) ...) - TODO: check + NOT-FOR-US: Just For Fun Network Management System (JFFNMS) CVE-2007-3191 (Just For Fun Network Management System (JFFNMS) 0.8.3 allows remote ...) - TODO: check + NOT-FOR-US: Just For Fun Network Management System (JFFNMS) CVE-2007-3190 (Multiple SQL injection vulnerabilities in auth.php in Just For Fun ...) - TODO: check + NOT-FOR-US: Just For Fun Network Management System (JFFNMS) CVE-2007-3189 (Cross-site scripting (XSS) vulnerability in auth.php in Just For Fun ...) - TODO: check + NOT-FOR-US: Just For Fun Network Management System (JFFNMS) CVE-2007-3188 (SQL injection vulnerability in down_indir.asp in Fullaspsite GeometriX ...) - TODO: check + NOT-FOR-US: Fullaspsite GeometriX Download Portal CVE-2007-3187 (Multiple unspecified vulnerabilities in Apple Safari for Windows allow ...) - TODO: check + NOT-FOR-US: Apple CVE-2007-3186 (Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute ...) - TODO: check + NOT-FOR-US: Apple CVE-2007-3185 (Apple Safari Beta 3.0.1 for Windows public beta allows remote ...) - TODO: check + NOT-FOR-US: Apple CVE-2007-3184 (Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, ...) - TODO: check + NOT-FOR-US: Cisco CVE-2007-3183 RESERVED CVE-2007-3182 @@ -139,39 +139,39 @@ CVE-2007-3181 (Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows ...) TODO: check CVE-2007-3180 (Buffer overflow in Help and Support Center before 4.4 C on HP Windows ...) - TODO: check +
[Secure-testing-commits] r6007 - data/CVE
Author: fw Date: 2007-06-16 10:38:52 + (Sat, 16 Jun 2007) New Revision: 6007 Modified: data/CVE/list Log: CVE-2007-3163: FCKEditor (several packages) CVE-2007-3155: egroupware CVE-2007-3154: wz_tooltip (several packages) CVE-2007-3145: galeon CVE-2007-3144: Mozilla packages CVE-2007-3143: konqueror CVE-2007-3140: wordpress assigned CVE-2007-3126: gimp CVE-2007-3125: w3m Modified: data/CVE/list === --- data/CVE/list 2007-06-16 09:51:35 UTC (rev 6006) +++ data/CVE/list 2007-06-16 10:38:52 UTC (rev 6007) @@ -173,7 +173,10 @@ CVE-2007-3164 (Microsoft Internet Explorer 7, when prompting for HTTP Basic ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-3163 (Incomplete blacklist vulnerability in the filemanager in Frederico ...) - TODO: check + - moin unfixed (bug #429205) + - knowledgeroot unfixed (bug #429204) + - karrigell unfixed (bug #429207) + - jspwiki unfixed (bug #429206) CVE-2007-3162 (Buffer overflow in the NotSafe function in the idaiehlp ActiveX ...) TODO: check CVE-2007-3161 (Buffer overflow in Ace-FTP Client 1.24a allows user-assisted, remote ...) @@ -187,11 +190,14 @@ CVE-2007-3157 (IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build ...) TODO: check CVE-2007-3156 (Multiple cross-site scripting (XSS) vulnerabilities in pam_login.cgi ...) - TODO: check + - webmin removed CVE-2007-3155 (Unspecified vulnerability in eGroupWare before 1.2.107-2 has unknown ...) - TODO: check + - egroupware unfixed (bug #429208) CVE-2007-3154 (Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka ...) - TODO: check + - ktorrent unfixed (bug #429209) + - dtc-common unfixed (bug #429214) + - egroupware-core unfixed (bug #429215) + - gallery unfixed (bug #429213) CVE-2007-3153 (The ares_init:randomize_key function in c-ares, on platforms other ...) TODO: check CVE-2007-3152 (c-ares before 1.4.0 uses a predictable seed for the random number ...) @@ -209,17 +215,21 @@ CVE-2007-3146 (Zen Help Desk 2.1 stores sensitive information under the web root with ...) TODO: check CVE-2007-3145 (Visual truncation vulnerability in Galeon 2.0.1 allows remote ...) - TODO: check + - galeon unfixed (low; bug #429216) CVE-2007-3144 (Visual truncation vulnerability in Mozilla 1.7.12 allows remote ...) - TODO: check + - iceweasel unfixed (low) + - iceape unfixed (low) + - firefox removed (low) + - mozilla removed (low) + - xulrunner unfixed (low) CVE-2007-3143 (Visual truncation vulnerability in Konqueror 3.5.5 allows remote ...) - TODO: check + - kdebase unfixed (low) CVE-2007-3142 (Visual truncation vulnerability in Opera 9.21 allows remote attackers ...) TODO: check CVE-2007-3141 (PHP remote file inclusion vulnerability in core/editor.php in ...) TODO: check CVE-2007-3140 (SQL injection vulnerability in xmlrpc.php in WordPress 2.2 allows ...) - TODO: check + - wordpress unfixed (bug #428073) CVE-2007-3139 (config/general.php in Quick.Cart 2.2 and earlier uses a default ...) TODO: check CVE-2007-3138 (Directory traversal vulnerability in index.php in Open Solution ...) @@ -259,9 +269,9 @@ CVE-2007-3127 RESERVED CVE-2007-3126 (Gimp 2.3.14 allows context-dependent attackers to cause a denial of ...) - TODO: check + - gimp unfixed (unimportant) CVE-2007-3125 (Format string vulnerability in the inputAnswer function in file.c in ...) - TODO: check + - w3m unfixed (medium) CVE-2007-3124 (Buffer overflow in backup/src/vmsbackup.c (aka the backup utility) in ...) TODO: check CVE-2007-3123 (unrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 ...) @@ -578,8 +588,6 @@ TODO: check CVE-2000-1243 (Privacy leak in Dansie Shopping Cart 3.04, and probably earlier ...) TODO: check -CVE-2007- [wordpress SQL injection] - - wordpress unfixed (bug #428073) CVE-2007- [webpy HTTP response splitting vulnerability] - webpy 0.210-1 (bug #427715) CVE-2007- [dar choosing weak IV when encrypting] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6009 - bin
Author: fw Date: 2007-06-16 10:41:23 + (Sat, 16 Jun 2007) New Revision: 6009 Added: bin/mass-bug-filer Log: * bin/mass-bug-filer: Small script to file security bugs, with a few sanity checks. Added: bin/mass-bug-filer === --- bin/mass-bug-filer (rev 0) +++ bin/mass-bug-filer 2007-06-16 10:41:23 UTC (rev 6009) @@ -0,0 +1,85 @@ +#!/usr/bin/python + +import sys +import apt +import apt_pkg +import os +import re + +if len(sys.argv) 3: +print sys.stderr, usage: %s FILE PACKAGE... % sys.argv[0] +sys.exit(1) + +message_file = file(sys.argv[1]) +packages = sys.argv[2:] + +cache = apt.Cache() +errors = False +for p in packages: +if not cache.has_key(p): +print sys.stderr, error: no such package:, p +errors = True +if errors: +sys.exit(2) + +h_subject = None +h_to = '[EMAIL PROTECTED]' +h_bug = {'Severity' : 'grave', + 'Tags' : 'security'} +re_header = re.compile('^([a-zA-Z0-9-]+):\s*(\S.*?)\s*$') +source_lines = message_file.readlines() +state = 0 +body = [] +for line in source_lines: +if state == 1: +body.append(line) +continue + +if line == '\n': +if h_subject is None: +print sys.stderr, error: missing Subject header +sys.exit(2) +state = 1 +continue + +# state == 0 +match = re_header.match(line) +if match is None: +print sys.stderr, error: invalid line:, line +sys.exit(2) +(k, v) = match.groups() +if k == Subject: +h_subject = v +continue +if h_bug.has_key(k): +h_bug[k] = v +continue +print sys.stderr, error: invalid header field:, k +sys.exit(2) + +def make_message(pkg): +yield To: %s\nSubject: %s\n\n % (h_to, h_subject) +yield Package: %s\n % pkg +for x in h_bug.iteritems(): +yield %s: %s\n % x +yield \n +for x in body: +yield x + +def sendmail(lines): +p = os.popen(/usr/lib/sendmail -oee -i -t, w) +closed = False +try: +for x in lines: +p.write(x) +finally: +p.close() + +for p in packages: +sendmail(make_message(p)) + +for p in packages: +print \t- %s unfixed (bug filed) % p + + + ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6011 - data/CVE
Author: fw Date: 2007-06-16 11:06:57 + (Sat, 16 Jun 2007) New Revision: 6011 Modified: data/CVE/list Log: CVE-2007-3121: zvbi fixed CVE-2007-3116, CVE-2007-3115, CVE-2007-3114: maradns fixed CVE-2007-3113, CVE-2007-3112: cacti Modified: data/CVE/list === --- data/CVE/list 2007-06-16 10:50:05 UTC (rev 6010) +++ data/CVE/list 2007-06-16 11:06:57 UTC (rev 6011) @@ -279,7 +279,7 @@ CVE-2007-3122 (The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 ...) - clamav 0.90.3-1 CVE-2007-3121 (Buffer overflow in the CCdecode function in contrib/ntsc-cc.c in the ...) - TODO: check + - zvbi 0.2.25-1 (bug #429221) CVE-2007-3120 (Cross-site scripting (XSS) vulnerability in public/code/cp_dpage.php ...) TODO: check CVE-2007-3119 (SQL injection vulnerability in news.asp in Kartli Alisveris Sistemi ...) @@ -289,15 +289,15 @@ CVE-2007-3117 (Cross-site scripting (XSS) vulnerability in the SEO module in ADPLAN 3 ...) TODO: check CVE-2007-3116 (Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows ...) - TODO: check + - maradns 1.2.12.06-1 CVE-2007-3115 (Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, ...) - TODO: check + - maradns 1.2.12.06-1 CVE-2007-3114 (Memory leak in server/MaraDNS.c in MaraDNS before 1.2.12.05, and 1.3.x ...) - TODO: check + - maradns 1.2.12.05-1 CVE-2007-3113 (Cacti 0.8.6i, and possibly other versions, allows remote authenticated ...) - TODO: check + - cacti unfixed (low; bug #429224) CVE-2007-3112 (Cacti 0.8.6i, and possibly other versions, allows remote authenticated ...) - TODO: check + - cacti unfixed (low; bug #429224) CVE-2007-3111 (Buffer overflow in the Provideo Camimage ActiveX control in ...) TODO: check CVE-2007-3110 (Cross-site scripting (XSS) vulnerability in the Andy Frank Beatnik 1.0 ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6012 - data/CVE
Author: fw Date: 2007-06-16 11:07:28 + (Sat, 16 Jun 2007) New Revision: 6012 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2007-06-16 11:06:57 UTC (rev 6011) +++ data/CVE/list 2007-06-16 11:07:28 UTC (rev 6012) @@ -281,13 +281,13 @@ CVE-2007-3121 (Buffer overflow in the CCdecode function in contrib/ntsc-cc.c in the ...) - zvbi 0.2.25-1 (bug #429221) CVE-2007-3120 (Cross-site scripting (XSS) vulnerability in public/code/cp_dpage.php ...) - TODO: check + NOT-FOR-US: All In One Control Panel (AIOCP) CVE-2007-3119 (SQL injection vulnerability in news.asp in Kartli Alisveris Sistemi ...) - TODO: check + NOT-FOR-US: Kartli Alisveris Sistemi CVE-2007-3118 (Multiple PHP remote file inclusion vulnerabilities in Kravchuk letter ...) - TODO: check + NOT-FOR-US: Kravchuk letter CVE-2007-3117 (Cross-site scripting (XSS) vulnerability in the SEO module in ADPLAN 3 ...) - TODO: check + NOT-FOR-US: ADPLAN CVE-2007-3116 (Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows ...) - maradns 1.2.12.06-1 CVE-2007-3115 (Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, ...) @@ -299,11 +299,11 @@ CVE-2007-3112 (Cacti 0.8.6i, and possibly other versions, allows remote authenticated ...) - cacti unfixed (low; bug #429224) CVE-2007-3111 (Buffer overflow in the Provideo Camimage ActiveX control in ...) - TODO: check + NOT-FOR-US: Provideo Camimage CVE-2007-3110 (Cross-site scripting (XSS) vulnerability in the Andy Frank Beatnik 1.0 ...) - TODO: check + NOT-FOR-US: Andy Frank Beatnik CVE-2007-3109 (The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage ...) - TODO: check + NOT-FOR-US: Microsoft FrontPage CVE-2007-3108 RESERVED CVE-2007-3107 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6013 - data/CVE
Author: fw Date: 2007-06-16 11:24:42 + (Sat, 16 Jun 2007) New Revision: 6013 Modified: data/CVE/list Log: CVE-2007-3099, CVE-2007-3100: open-iscsi Modified: data/CVE/list === --- data/CVE/list 2007-06-16 11:07:28 UTC (rev 6012) +++ data/CVE/list 2007-06-16 11:24:42 UTC (rev 6013) @@ -321,9 +321,9 @@ CVE-2007-3101 RESERVED CVE-2007-3100 (usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before ...) - TODO: check + - open-iscsi unfixed (low; bug #429225) CVE-2007-3099 (usr/mgmt_ipc.c in iscsid in open-iscsi (iscsi-initiator-utils) before ...) - TODO: check + - open-iscsi unfixed (medium; bug #429225) CVE-2007-3098 (The SNMPc Server (crserv.exe) process in Castle Rock Computing SNMPc ...) TODO: check CVE-2007-3097 (my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6018 - data/DSA
Author: fw Date: 2007-06-16 13:30:52 + (Sat, 16 Jun 2007) New Revision: 6018 Modified: data/DSA/list Log: DSA-1305-1: icedove DSA-1308-1: iceweasel Modified: data/DSA/list === --- data/DSA/list 2007-06-16 11:50:14 UTC (rev 6017) +++ data/DSA/list 2007-06-16 13:30:52 UTC (rev 6018) @@ -1,3 +1,9 @@ +[14 Jun 2007] DSA-1308-1 iceweasel - several vulnerabilities + {CVE-2007-1362 CVE-2007-2867 CVE-2007-2868 CVE-2007-2869 CVE-2007-2870 CVE-2007-2871} + [etch] - iceweasel 2.0.0.4-0etch1 +[13 Jun 2007] DSA-1305-1 icedove - several vulnerabilities + {CVE-2007-1558 CVE-2007-2867 CVE-2007-2868} + [etch] - icedove 1.5.0.12.dfsg1-0etch1 [12 Jun 2007] DSA-1307-1 openoffice.org - heap overflow {CVE-2007-0245} [sarge] - openoffice.org 1.1.3-9sarge7 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6019 - data/CVE
Author: fw Date: 2007-06-16 14:04:25 + (Sat, 16 Jun 2007) New Revision: 6019 Modified: data/CVE/list Log: CVE-2007-2681: b2evolution non-issue Modified: data/CVE/list === --- data/CVE/list 2007-06-16 13:30:52 UTC (rev 6018) +++ data/CVE/list 2007-06-16 14:04:25 UTC (rev 6019) @@ -1255,7 +1255,10 @@ CVE-2007-2682 (The installer for Adobe Version Cue CS3 Server on Apple Mac OS X, as ...) NOT-FOR-US: Adobe CVE-2007-2681 (Directory traversal vulnerability in blogs/index.php in b2evolution ...) - TODO: check + - b2evolution unfixed (unimportant) + NOTE: This is a register_globals=on issue. + NOTE: More than just blogs/index.php is affected (that file isn't + NOTE: installed by the Debian package). CVE-2007-2680 (Cross-site scripting (XSS) vulnerability in the management interface ...) NOT-FOR-US: Canon CVE-2007-2679 (PHP file inclusion vulnerability in index.php in Ivan Peevski gallery ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6020 - data/CVE
Author: fw Date: 2007-06-16 14:21:13 + (Sat, 16 Jun 2007) New Revision: 6020 Modified: data/CVE/list Log: CVE-2007-2650: clamav fixed NFUs Modified: data/CVE/list === --- data/CVE/list 2007-06-16 14:04:25 UTC (rev 6019) +++ data/CVE/list 2007-06-16 14:21:13 UTC (rev 6020) @@ -251,15 +251,15 @@ CVE-2007-3130 (Multiple PHP remote file inclusion vulnerabilities in the OpenWiki ...) NOT-FOR-US: OpenWiki CVE-2005-4845 (The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and ...) - TODO: check + NOT-FOR-US: Sun Java on Microsoft Windows CVE-2005-4844 (The CLSID_ApprenticeICW control allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2005-4843 (The SmartConnect Class control allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2005-4842 (The System Monitor Source Properties control allows remote attackers ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2005-4841 (The Outlook Progress Ctl control allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2007- [jffnms multiple issues] - jffnms 0.8.3dfsg.1-4 CVE-2007-3129 @@ -401,7 +401,7 @@ CVE-2007-3061 (Cactushop 6 and earlier stores sensitive information under the web ...) NOT-FOR-US: Cactushop CVE-2007-3060 (Multiple cross-site scripting (XSS) vulnerabilities in PHP Live! 3.2.2 ...) - TODO: check + NOT-FOR-US: PHP Live! CVE-2007-3059 (SendCard 3.3.0 allows remote attackers to obtain sensitive information ...) NOT-FOR-US: SendCard CVE-2007-3058 (Multiple PHP remote file inclusion vulnerabilities in Madirish Webmail ...) @@ -579,13 +579,13 @@ CVE-2007-2971 (SQL injection vulnerability in getnewsitem.php in gCards 1.46 and ...) NOT-FOR-US: gCards CVE-2007-2970 (Multiple cross-site scripting (XSS) vulnerabilities in cgi/block.cgi ...) - TODO: check + NOT-FOR-US: 8e6 R3000 Internet Filter CVE-2007-2969 (PHP remote file inclusion vulnerability in newsletter.php in ...) - TODO: check + NOT-FOR-US: WAnewsletter CVE-2007-2968 (Cross-site scripting (XSS) vulnerability in register.php in cpCommerce ...) - TODO: check + NOT-FOR-US: cpCommerce CVE-2005-4840 (The Outlook Express Address Book control, when using Internet Explorer ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2000-1243 (Privacy leak in Dansie Shopping Cart 3.04, and probably earlier ...) TODO: check CVE-2007- [webpy HTTP response splitting vulnerability] @@ -689,15 +689,15 @@ CVE-2007-2922 RESERVED CVE-2007-2921 (Multiple buffer overflows in acgm.dll in the Corel / Micrografx ...) - TODO: check + NOT-FOR-US: Corel CVE-2007-2920 (Multiple stack-based buffer overflows in the Zoomify Viewer ActiveX ...) - TODO: check + NOT-FOR-US: Zoomify Viewer CVE-2007-2919 (Multiple stack-based buffer overflows in the FViewerLoading ActiveX ...) - TODO: check + NOT-FOR-US: FViewerLoading CVE-2007-2918 (Multiple stack-based buffer overflows in ActiveX controls (1) VibeC in ...) - TODO: check + NOT-FOR-US: Logitech CVE-2007-2917 (Multiple buffer overflows in a certain ActiveX control in odapi.dll in ...) - TODO: check + NOT-FOR-US: Authentium CVE-2007-2916 (Cross-site scripting (XSS) vulnerability in showown.php in GMTT Music ...) NOT-FOR-US: GMTT Music Distro CVE-2007-2915 (Cross-site scripting (XSS) vulnerability in RM EasyMail Plus allows ...) @@ -715,7 +715,7 @@ CVE-2007-2909 (Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft ...) NOT-FOR-US: Jelsoft vBulletin CVE-2007-2908 (Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft ...) - TODO: check + NOT-FOR-US: vBulletin CVE-2007-2907 (Unspecified vulnerability in SSL-Explorer before 0.2.13 allows remote ...) NOT-FOR-US: SSL-Explorer CVE-2007-2906 (Java Embedding Plugin 0.9.6.1 allows remote attackers to cause a ...) @@ -751,7 +751,7 @@ CVE-2007-2891 (Multiple PHP remote file inclusion vulnerabilities in FirmWorX 0.1.2 ...) NOT-FOR-US: FirmWorX CVE-2007-2890 (SQL injection vulnerability in category.php in cpCommerce 1.1.0 and ...) - TODO: check + NOT-FOR-US: cpCommerce CVE-2007-2889 (SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 ...) NOT-FOR-US: Dokeos CVE-2007-2888 (Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows ...) @@ -840,9 +840,9 @@ CVE-2007-2865 (Cross-site scripting (XSS) vulnerability in sqledit.php in phpPgAdmin ...) - phppgadmin 4.1.2-1 (low; bug #427151) CVE-2007-2864 (Stack-based buffer overflow in the Anti-Virus engine before content ...) - TODO: check + NOT-FOR-US: CA Anti-Virus CVE-2007-2863 (Stack-based buffer
[Secure-testing-commits] r6021 - data/CVE
Author: tedp-guest Date: 2007-06-16 18:18:07 + (Sat, 16 Jun 2007) New Revision: 6021 Modified: data/CVE/list Log: CVE-2007-3209: Use original bug number and mark sarge not-affected Modified: data/CVE/list === --- data/CVE/list 2007-06-16 14:21:13 UTC (rev 6020) +++ data/CVE/list 2007-06-16 18:18:07 UTC (rev 6021) @@ -80,7 +80,8 @@ CVE-2007-3210 (Stack-based buffer overflow in nptoken.mox in the Cellosoft Tokens ...) NOT-FOR-US: Cellosoft Tokens Object CVE-2007-3209 (Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses ...) - - mail-notification unfixed (low; bug #429200) + - mail-notification unfixed (low; bug #428157) + [sarge] - mail-notification not-affected (Only affects 3.x and 4.x) CVE-2007-3208 (CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 ...) NOT-FOR-US: YaBB CVE-2007-3207 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6022 - doc
Author: tedp-guest Date: 2007-06-16 18:26:09 + (Sat, 16 Jun 2007) New Revision: 6022 Modified: doc/narrative_introduction Log: Fix typos Modified: doc/narrative_introduction === --- doc/narrative_introduction 2007-06-16 18:18:07 UTC (rev 6021) +++ doc/narrative_introduction 2007-06-16 18:26:09 UTC (rev 6022) @@ -12,7 +12,7 @@ just a subversion repository and some text files that we collaboratively edit and then some scripts to parse these files and generate useful reports available online. Everything is designed to be -very simple to use, transparant and easy to see what other people are +very simple to use, transparent and easy to see what other people are working on so you can work on other things. Why are these issues disclosed to the public? @@ -33,7 +33,7 @@ knows about already, in fact users have told us that they prefer to know not only when a package they have installed is vulnerable (so they can disable it or firewall it off, or patch it or whatever), but -to also know that Debian is working on a fix. Transparancy is what our +to also know that Debian is working on a fix. Transparency is what our users expect, and what they deserve. Tracking publically known issues openly (and the occasional unfortunate embargoed issue privately) is good for the project as a whole, especially the public's perception of @@ -309,7 +309,7 @@ - Generate a list of packages that are subject to security problems, but stuck in testing migration due to problems with the dependency chain and thus candidates for a DTSA -- Generate a list of TODO issues that need to be adressed +- Generate a list of TODO issues that need to be addressed - Generate a list of packages that will enter Debian soon and need to be checked for security problems - Generate a list of provisional IDs that need to be turned into proper ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6024 - data/DSA
Author: jmm-guest Date: 2007-06-16 20:59:16 + (Sat, 16 Jun 2007) New Revision: 6024 Modified: data/DSA/list Log: add 2.6.8 DSA reorder again Modified: data/DSA/list === --- data/DSA/list 2007-06-16 20:44:18 UTC (rev 6023) +++ data/DSA/list 2007-06-16 20:59:16 UTC (rev 6024) @@ -1,9 +1,6 @@ [14 Jun 2007] DSA-1308-1 iceweasel - several vulnerabilities {CVE-2007-1362 CVE-2007-2867 CVE-2007-2868 CVE-2007-2869 CVE-2007-2870 CVE-2007-2871} [etch] - iceweasel 2.0.0.4-0etch1 -[13 Jun 2007] DSA-1305-1 icedove - several vulnerabilities - {CVE-2007-1558 CVE-2007-2867 CVE-2007-2868} - [etch] - icedove 1.5.0.12.dfsg1-0etch1 [12 Jun 2007] DSA-1307-1 openoffice.org - heap overflow {CVE-2007-0245} [sarge] - openoffice.org 1.1.3-9sarge7 @@ -11,6 +8,12 @@ [12 Jun 2007] DSA-1306-1 xulrunner {CVE-2007-1362 CVE-2007-2867 CVE-2007-2868 CVE-2007-2869 CVE-2007-2870 CVE-2007-2871} [etch] - xulrunner 1.8.0.12-0etch1 +[13 Jun 2007] DSA-1305-1 icedove - several vulnerabilities + {CVE-2007-1558 CVE-2007-2867 CVE-2007-2868} + [etch] - icedove 1.5.0.12.dfsg1-0etch1 +[16 Jun 2007] DSA-1304 kernel-source-2.6.8 - several +{CVE-2005-4811 CVE-2006-4814 CVE-2006-4623 CVE-2006-5753 CVE-2006-5754 CVE-2006-5757 CVE-2006-6053 CVE-2006-6056 CVE-2006-6060 CVE-2006-6106 CVE-2006-6535 CVE-2007-0958 CVE-2007-1357 CVE-2007-1592} +[sarge] - kernel-source-2.6.8 2.6.8-16sarge7 [10 Jun 2007] DSA-1303-1 lighttpd - denial of service {CVE-2007-1869 CVE-2007-1870} [etch] - lighttpd 1.4.13-4etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r6025 - data/CVE
Author: joeyh Date: 2007-06-16 21:14:07 + (Sat, 16 Jun 2007) New Revision: 6025 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2007-06-16 20:59:16 UTC (rev 6024) +++ data/CVE/list 2007-06-16 21:14:07 UTC (rev 6025) @@ -794,7 +794,7 @@ - php5 unfixed NOTE: Fix from 5.2.3 was ineffective CVE-2007-2871 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...) - {DSA-1306-1 DSA-1300-1} + {DSA-1308-1 DSA-1306-1 DSA-1300-1} NOTE: MFSA2007-17 - iceweasel 2.0.0.4-1 (low) - iceape 1.1.2-1 (low) @@ -802,7 +802,7 @@ - mozilla removed (low) - xulrunner 1.8.1.4-1 (low) CVE-2007-2870 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...) - {DSA-1306-1 DSA-1300-1} + {DSA-1308-1 DSA-1306-1 DSA-1300-1} NOTE: MFSA2007-16 - iceweasel 2.0.0.4-1 (medium) - iceape 1.1.2-1 (medium) @@ -810,7 +810,7 @@ - mozilla removed (medium) - xulrunner 1.8.1.4-1 (medium) CVE-2007-2869 (The form autocomplete feature in Mozilla Firefox 1.5.x before ...) - {DSA-1306-1} + {DSA-1308-1 DSA-1306-1} NOTE: MFSA2007-13 - iceweasel 2.0.0.4-1 (unimportant) - iceape 1.1.2-1 (unimportant) @@ -818,7 +818,7 @@ - mozilla removed (unimportant) - xulrunner 1.8.1.4-1 (unimportant) CVE-2007-2868 (Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox ...) - {DSA-1306-1 DSA-1300-1} + {DSA-1308-1 DSA-1306-1 DSA-1305-1 DSA-1300-1} NOTE: MFSA2007-12 - iceweasel 2.0.0.4-1 (high) - iceape 1.1.2-1 (high) @@ -829,7 +829,7 @@ - xulrunner 1.8.1.4-1 (high) [sarge] - mozilla-thunderbird unfixed (low) CVE-2007-2867 (Multiple vulnerabilities in the layout engine for Mozilla Firefox ...) - {DSA-1306-1 DSA-1300-1} + {DSA-1308-1 DSA-1306-1 DSA-1305-1 DSA-1300-1} NOTE: MFSA2007-12 - iceweasel 2.0.0.4-1 (high) - iceape 1.1.2-1 (high) @@ -3698,7 +3698,7 @@ CVE-2007-1593 (The administrative service in Symantec Veritas Volume Replicator (VVR) ...) NOT-FOR-US: Symantec CVE-2007-1592 (net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 ...) - {DSA-1286-1} + {DSA-1304 DSA-1286-1} - linux-2.6 2.6.20-1 (medium) CVE-2007-1591 (VsapiNT.sys in the Scan Engine 8.0 for Trend Micro AntiVirus ...) NOT-FOR-US: Trend Micro @@ -3799,7 +3799,7 @@ CVE-2007-1559 (Stack-based buffer overflow in SonicDVDDashVRNav.dll in Roxio ...) NOT-FOR-US: Roxio CVE-2007-1558 (The APOP protocol allows remote attackers to guess the first 3 ...) - {DSA-1300-1} + {DSA-1305-1 DSA-1300-1} NOTE: Affects various clients, but no practical security implications NOTE: MFSA2007-15 - icedove 2.0.0.4-1 (unimportant) @@ -4291,7 +4291,7 @@ CVE-2007-1363 (Multiple SQL injection vulnerabilities in DropAFew before 0.2.1 allow ...) NOT-FOR-US: DropAFew CVE-2007-1362 (Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...) - {DSA-1306-1 DSA-1300-1} + {DSA-1308-1 DSA-1306-1 DSA-1300-1} NOTE: MFSA2007-14 - iceape 1.1.2-1 (low) - iceweasel 2.0.0.4-1 (low) @@ -4305,7 +4305,7 @@ CVE-2007-1358 (Cross-site scripting (XSS) vulnerability in certain applications using ...) - tomcat4 removed (low) CVE-2007-1357 (The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before ...) - {DSA-1286-1} + {DSA-1304 DSA-1286-1} - linux-2.6 2.6.20-1 CVE-2007-1356 RESERVED @@ -4995,6 +4995,7 @@ CVE-2007-1117 (Unspecified vulnerability in Publisher 2007 in Microsoft Office 2007 ...) NOT-FOR-US: Microsoft Office CVE-2007-1116 (The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI ...) + {DSA-1300-1} - iceweasel 2.0.0.4-1 (low) - iceape 1.1.2-1 (low) - xulrunner 1.8.1.4-1 (bug #415919; bug #415944; bug #415945; low) @@ -5527,7 +5528,7 @@ CVE-2007-0959 (Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when ...) NOT-FOR-US: Cisco CVE-2007-0958 (Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable ...) - {DSA-1286-1} + {DSA-1304 DSA-1286-1} - linux-2.6 2.6.20-1 (unimportant) CVE-2007-0957 (Stack-based buffer overflow in the krb5_klog_syslog function in the ...) {DSA-1276-1} @@ -8846,6 +8847,7 @@ CVE-2006-6536 (Cross-site scripting (XSS) vulnerability in hata.asp in Cilem Haber ...) NOT-FOR-US: Cilem Haber Free Edition CVE-2006-6535 (The dev_queue_xmit function in Linux kernel 2.6 can fail before ...) + {DSA-1304} - linux-2.6 not-affected (Fixed before upload into the archive; 2.6.10) CVE-2006-6534 (Multiple cross-site scripting (XSS) vulnerabilities in osCommerce ...)