CVE - CVE Reference Map for Source MLIST

About CVE

Terminology
Documents
FAQs
CVE List

About CVE Identifiers
Obtain a CVE Identifier
Search CVE
Search NVD
CVE In Use

CVE Adoption
CVE-Compatible Products
NVD for CVE Fix Information
More . . .
News & Events

Calendar
Free Newsletter
Community

CVE Editorial Board
Sponsor
Contact Us

Search the Site

CVE List

Data Updates & RSS Feeds
Reference Key/Maps
Data Sources
Versions
Search Tips
Editor's Commentary
Obtain a CVE Identifier
Editorial Policies
About CVE Identifiers

Items of Interest

Terminology
NVD

CVE Reference Map for Source MLIST

Source	MLIST
Description	generic reference form for miscellaneous mailing lists
Notes	This is used for identifying miscellaneous mailing lists.

This reference map lists the various references for MLIST and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2009-11-20.

Note that the list of references may not be complete.

MLIST:20040507 Bug in IO bitmap handling? Probably exploitable (2.6.5)	CVE-2004-2536
MLIST:20040507 Re: Bug in IO bitmap handling? Probably exploitable (2.6.5)	CVE-2004-2536
MLIST:20041026 [Mimedefang] SECURITY: Patch for MIME-tools	CVE-2004-1098
MLIST:20050422 Chora 1.2.3 (final)	CVE-2005-1317
MLIST:20070902 Oops in pwc v4l driver	CVE-2007-5093
MLIST:20070903 Re: Oops in pwc v4l driver	CVE-2007-5093
MLIST:20071021 [Xen-ia64-devel] PATCH: check r2 value for VTi mov rr[r3]=r2	CVE-2007-6207
MLIST:VIM 20070130 Source VERIFY: nsGalPHP RFI	CVE-2007-0573
MLIST:[0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T	CVE-2004-1627
MLIST:[ANNOUNCE] 20070907 balsa-2.3.20 released	CVE-2007-5007
MLIST:[AWFFULL] 20070123 Regarding the fixes in 3.7.2	CVE-2007-0510
MLIST:[AWFFULL] 20070505 awffull 3.7.1 bug with search string keywords	CVE-2007-3299
MLIST:[AWFFULL] 20070507 Announcing AWFFull v3.7.4	CVE-2007-3299
MLIST:[Acl-Devel] 20050205 [FIX] Long-standing xattr sharing bug	CVE-2005-2801
MLIST:[Announce] 20080326 GnuPG 1.4.9 released	CVE-2008-1530
MLIST:[Announce] 20090723 ANNOUNCE: strongswan-2.8.11 and strongswan-4.2.17 released	CVE-2009-2661
MLIST:[Announcements] 20071206 MySQL 5.0.51 has been released	CVE-2007-5969
MLIST:[Backup-manager-commits] 20070102 r528 - in backup-manager/trunk: . doc lib man po	CVE-2007-2766
MLIST:[Bug-tar] 20060220 tar 1.15.90 released	CVE-2006-0300
MLIST:[Buildbot-devel] 20090812 [SECURITY ALERT] Cross-site scripting vulnerability	CVE-2009-2959
MLIST:[Buildbot-devel] 20090813 Re: Cross-site scripting vulnerability	CVE-2009-2967
MLIST:[Cache-News] 20040303 Security Alert	CVE-2004-2683
MLIST:[Cache-News] 20040305 Security Alert Correction	CVE-2004-2683
MLIST:[Cache-News] 20040309 Security Alert - %template	CVE-2004-2684
MLIST:[Cache-News] 20040310 Updated Security Alert - %template	CVE-2004-2684
MLIST:[Cache-News] 20070718 Security Alert: User passed parameter values via CSP	CVE-2007-4427
MLIST:[Clamav-announce] 20070530 announcing ClamAV 0.90.3	CVE-2007-3023 CVE-2007-3024 CVE-2007-3025 CVE-2007-3122 CVE-2007-3123
MLIST:[Cyrus-CVS] 20090902 src/sieve by brong	CVE-2009-2632
MLIST:[Dailydave] 20040323 dtlogin advisory	CVE-2004-0368
MLIST:[Dailydave] 20040514 Mozilla bug might even get fixed!	CVE-2004-0478
MLIST:[Dailydave] 20050704 !!! pre-authenticated remote code inclusion vulnerability inside phppgadmin !!!	CVE-2005-2256
MLIST:[Dailydave] 20050714 SPIKE actually scores.	CVE-2005-1218
MLIST:[Dailydave] 20051129 Webmin miniserv.pl format string vulnerability	CVE-2005-3912
MLIST:[Dailydave] 20060105 WMF goes away :<	CVE-2006-0106
MLIST:[Dailydave] 20060203 ProtoVer vs Lotus Domino Server 7.0	CVE-2006-0580
MLIST:[Dailydave] 20060207 ProFTPD bug	CVE-2005-4816
MLIST:[Dailydave] 20060208 Sun Directory Server 5.2 fun	CVE-2006-0647
MLIST:[Dailydave] 20060210 ??? Sun Directory Server 5.2 fun ???	CVE-2006-0647
MLIST:[Dailydave] 20060211 IBM Tivoli Directory Server 0day	CVE-2006-0717
MLIST:[Dailydave] 20060213 eddy 0day	CVE-2006-0710
MLIST:[Dailydave] 20060214 MailSite (WorldMail) fun	CVE-2006-0790
MLIST:[Dailydave] 20060221 word dos 4fun	CVE-2006-0935
MLIST:[Dailydave] 20060226 fun with FreeBSD kernel	CVE-2006-0900
MLIST:[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple	CVE-2006-2183
MLIST:[Dailydave] 20060721 GnuPG 1.4.4 fun	CVE-2006-3746
MLIST:[Dailydave] 20061208 Madwifi SIOCSIWSCAN vulnerability (CVE-2006-6332)	CVE-2006-6332
MLIST:[Dailydave] 20080101 0day RealPlayer exploit demo	CVE-2008-0098
MLIST:[Darklab] 20060131 SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060905 SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060907 Re: SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060908 Re: SAP security/auditing	CVE-2005-4815
MLIST:[Dbmail-dev] 20071216 [DBMail 0000662]: Ability to bypass authentication.	CVE-2007-6714
MLIST:[Dbmail] 20030725 WARNING SECURITY FLAW IN IMAPSERVER	CVE-2003-1523
MLIST:[Debian-audit] 20041229 More temporary filenames/dirs related bugs	CVE-2004-2605
MLIST:[Dovecot-news] 20061119 Security hole #2: Off-by-one buffer overflow with mmap_disable=yes	CVE-2006-5973
MLIST:[Dovecot-news] 20071221 Security hole #4: Specific LDAP + auth cache configuration may mix up user logins	CVE-2007-6598
MLIST:[Dovecot-news] 20071229 v1.0.10 released	CVE-2007-6598
MLIST:[Dovecot-news] 20080309 Security hole #6: Some passdbs allowed users to log in without a valid password	CVE-2008-1218
MLIST:[Dovecot-news] 20080309 v1.0.13 and v1.1.rc3 released	CVE-2008-1218
MLIST:[Dovecot-news] 20080504 v1.0.11 released	CVE-2008-1199
MLIST:[Dovecot-news] 20081005 v1.1.4 released	CVE-2008-4577 CVE-2008-4578
MLIST:[Dovecot-news] 20081030 v1.1.6 released	CVE-2008-4907
MLIST:[Dovecot-news] 20090914 Security holes in CMU Sieve plugin	CVE-2009-2632 CVE-2009-3235
MLIST:[Dovecot-news] 20091119 1.0.rc15 released	CVE-2006-5973
MLIST:[Dovecot] 20050303 hanging imap... and users getting other users' emails!	CVE-2007-5794
MLIST:[Dovecot] 20050409 Authentication and the wrong mailbox?	CVE-2007-5794
MLIST:[Dovecot] 20060208 1.0beta3 released	CVE-2006-0730
MLIST:[Dovecot] 20081117 ManageSieve SECURITY hole: virtual users can edit scripts of other virtual users (all versions)	CVE-2008-5301
MLIST:[Ekiga-list] 20070213 Ekiga 2.0.5 available	CVE-2007-1006
MLIST:[Ethereal-dev] 20040416 Possibly incorrect CVE entry CAN-2004-0367	CVE-2004-0367
MLIST:[Ethereal-users] 20040503 Re: HotSIP sip-messages crasching ethereal	CVE-2004-0504
MLIST:[Evolution-hackers] 20070619 Evolution 2.11.4 , Evolution-Data-Server 1.11.4 , GtkHTML 3.15.4 and Evolution-Exchange 2.11.4 released	CVE-2007-3257
MLIST:[Exim] 20021204 Minor security problem in both Exim 3 and 4	CVE-2002-1381
MLIST:[Exim] 20030814 Minor security bug	CVE-2003-0743
MLIST:[Exim] 20030815 Minor security bug	CVE-2003-0743
MLIST:[Forensics] 20050511 DCO discovery & removal, capabilities of imaging & wiping tools	CVE-2005-1578
MLIST:[FreeNX-kNX] 20050217 Security: Serious bug in authority handling found and fixed	CVE-2005-0579
MLIST:[Ganglia-developers] 20090113 patches for: [Sec] Gmetad server BoF and network overload + [Feature] multiple requests per conn on interactive port	CVE-2009-0241 CVE-2009-0242
MLIST:[Ganglia-developers] 20090123 Re: CVE	CVE-2009-0242
MLIST:[Gnump3d-users] 20051028 New release - security fixes.	CVE-2005-3123 CVE-2005-3424
MLIST:[Gnupg-devel] 20060725 Re: [Dailydave] GnuPG 1.4.4 fun	CVE-2006-3746
MLIST:[Gpsd-announce] 20050127 Announcing release 2.8 of gpsd	CVE-2004-1388
MLIST:[Greasemonkey] 20050718 greasemonkey for secure data over insecure networks / sites	CVE-2005-2455
MLIST:[Horde-announce] 20051113 Horde 2.2.9 (final)	CVE-2005-3570
MLIST:[HostAP] 20050213 wpa_supplicant - new stable releases v0.3.8 and v0.2.7	CVE-2005-0470
MLIST:[IRCServices] 20070324 Regarding Founder Passwords	CVE-2007-3246
MLIST:[IRCServices] 20070324 Services 5.0.60 released	CVE-2007-3246
MLIST:[IRCServices] 20070608 NS REGISTER and LINK	CVE-2007-3245
MLIST:[IRCServices] 20070610 NS REGISTER and LINK	CVE-2007-3245
MLIST:[IRCServices] 20070610 Services 5.1pre3 / 5.0.62 released	CVE-2007-3245
MLIST:[IRCServices] 20071121 Services 5.0.63 released	CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.7 released	CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.9 released	CVE-2007-6123
MLIST:[ISN] 20070326 Windows weakness can lead to network traffic hijacks	CVE-2007-1692
MLIST:[ISSForum] 20040128 Third party BlackICE advisory	CVE-2004-2125
MLIST:[Info-gnu-radius] 20040915 GNU Radius 1.2.94.	CVE-2004-0849
MLIST:[Ipsec-tools-devel] 20070406 Ipsec-tools 0.6.7 released	CVE-2007-1841
MLIST:[Lurker-users] 20060302 Serious security vulnerabilities found	CVE-2006-1062 CVE-2006-1063 CVE-2006-1064
MLIST:[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released	CVE-2007-2948
MLIST:[Macsec] 20011229 MacOSX ppp	CVE-2001-1565
MLIST:[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates	CVE-2007-4985 CVE-2007-4986 CVE-2007-4987 CVE-2007-4988
MLIST:[Mailman-Announce] 20031231 RELEASED Mailman 2.1.4	CVE-2003-0965
MLIST:[Mailman-Announce] 20040208 RELEASED: Mailman 2.0.14 patch-only release	CVE-2003-0991
MLIST:[Mailman-Announce] 20040515 RELEASED Mailman 2.1.5	CVE-2004-0412
MLIST:[Mailman-Announce] 20060407 Released: Mailman 2.1.8 release candidate	CVE-2006-1712
MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9	CVE-2006-2191 CVE-2006-2941 CVE-2006-3636 CVE-2006-4624
MLIST:[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released)	CVE-2008-0564
MLIST:[Mailman-Users] 20050912 Uncaught runner exception: 'utf8' codeccan'tdecode bytes in position 1-4: invalid data	CVE-2005-3573
MLIST:[MediaWiki-announce] 20060327 MediaWiki 1.5.8, 1.4.15 released [SECURITY]	CVE-2006-1498
MLIST:[MediaWiki-announce] 20060606 MediaWiki 1.6.7 released	CVE-2006-2895
MLIST:[MediaWiki-announce] 20070204 MediaWiki 1.9.2 released	CVE-2007-0788
MLIST:[MediaWiki-announce] 20070910 MediaWiki 1.11.0, 1.10.2, 1.9.4, 1.8.5 released	CVE-2007-4828 CVE-2007-4883
MLIST:[MediaWiki-announce] 20080124 MediaWiki 1.11.1, 1.10.3, 1.9.5 released	CVE-2008-0460
MLIST:[MediaWiki-announce] 20080307 MediaWiki 1.11.2 released (security)	CVE-2008-1318
MLIST:[MediaWiki-announce] 20081002 MediaWiki 1.13.2, 1.12.1 security update	CVE-2008-4408
MLIST:[MediaWiki-announce] 20090207 MediaWiki releases: security update and new major branch	CVE-2009-0737
MLIST:[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2	CVE-2007-6612
MLIST:[Mongrel] 20071229 Regarding the 1.1.3 security release	CVE-2007-6612
MLIST:[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2)	CVE-2007-6612
MLIST:[Mono-dev] 20080726 [PATCH] HTML encode attributes that might need encoding	CVE-2008-3422
MLIST:[Monotone-devel] 20060308 [ANNOUNCE] Monotone 0.25.2 -- security fix release	CVE-2006-1166
MLIST:[Ntop-dev] 20050331 Minor security issue w/ ntop.init (RedHat Packages directory)	CVE-2005-3387
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available	CVE-2007-1507
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available	CVE-2007-1507
MLIST:[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients	CVE-2007-1507
MLIST:[OpenAFS-announce] 20071220 OpenAFS Security Advisory 2007-003: denial of service in OpenAFS fileserver	CVE-2007-6599
MLIST:[OpenBSD] 20011202 Code that crashes kernel at will + proposed patch	CVE-2001-1559
MLIST:[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs	CVE-2007-5934
MLIST:[Pen-Test] 20051104 Paros 3.2.7 release	CVE-2005-4668
MLIST:[Qemu-devel] 20070428 Qemu crashes on AAM 0	CVE-2007-1366
MLIST:[Qemu-devel] 20070429 Re: Qemu crashes on AAM 0	CVE-2007-1366
MLIST:[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004)	CVE-2008-2004
MLIST:[Qt-interest] 20020915 assistant leaves port unfiltered	CVE-2002-1883
MLIST:[Rt-announce] 20080623 Security vulnerability in RT 3.0 and up	CVE-2008-3502
MLIST:[SAP DB Dev] 20030422 Security Alert: Development Tools	CVE-2003-1033
MLIST:[ScryMUD] 20070223 ScryMUD 2.1.11 (stable) has been released.	CVE-2007-1098
MLIST:[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages	CVE-2007-3108 CVE-2007-4572 CVE-2007-5116 CVE-2007-5135 CVE-2007-5191 CVE-2007-5360 CVE-2007-5398
MLIST:[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1	CVE-2005-2090 CVE-2006-7195 CVE-2007-0450 CVE-2007-2788
MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates	CVE-2006-7228 CVE-2007-2052 CVE-2007-4308 CVE-2007-4965 CVE-2007-6015
MLIST:[Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package	CVE-2007-5497
MLIST:[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package	CVE-2007-6284
MLIST:[Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus	CVE-2006-7228 CVE-2007-1660 CVE-2007-5846 CVE-2008-0003
MLIST:[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix	CVE-2006-4814 CVE-2007-5001 CVE-2007-6151 CVE-2007-6206 CVE-2008-0007 CVE-2008-1105 CVE-2008-1367 CVE-2008-1375 CVE-2008-1669
MLIST:[Security-announce] 20081030 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff	CVE-2008-3281
MLIST:[Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues	CVE-2008-4281 CVE-2008-4915
MLIST:[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl	CVE-2009-0034 CVE-2009-0037 CVE-2009-1185
MLIST:[Server-cvs] 20070131 protocol/rtsp rtspprot.cpp,1.80,1.81	CVE-2006-6026
MLIST:[Shorewall-announce] 20040628 URGENT: Shorewall Security Vulnerability	CVE-2004-0647
MLIST:[Siteframe-Announce] 20051030 URGENT: additional security vulnerability, release 3.2.2	CVE-2005-4824
MLIST:[Siteframe-Announce] 20060621 WARNING: Security Vulnerability identified in Siteframe 3.x	CVE-2005-1965
MLIST:[Snort-announce] 20011129 Snort 1.8.3 Released	CVE-2001-1558
MLIST:[Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability	CVE-2006-2769
MLIST:[Speex-dev] 20080406 libfishsound 0.9.1 Release	CVE-2008-1686
MLIST:[Swfdec] 20080409 Swfdec 0.6.4 released	CVE-2008-1834
MLIST:[TLS] 20050602 ANNOUNCE: PureTLS 0.9b5	CVE-2005-4839
MLIST:[TYPO3-announce] 20061219 Pre-announcement for important security update	CVE-2006-6690
MLIST:[TYPO3-announce] 20061220 TYPO3 Security Bulletin TYPO3-20061220-1: Remote Command Execution in TYPO3	CVE-2006-6690
MLIST:[Trac] 20051205 SECURITY: Trac 0.9.2 Released	CVE-2005-4065
MLIST:[Uim] 20050928 uim 0.5.0.1 released	CVE-2005-3149
MLIST:[Uim] 20050928 uim-0.4.9.1 released	CVE-2005-3149
MLIST:[Unbound-users] 20091007 Release of unbound 1.3.4	CVE-2009-3602
MLIST:[Users] 20070822 New version: 0.8.3 beta	CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070822 SECURITY: root privilege escalation / trivial reveal of stored passwords	CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070823 New version: 0.8.3 beta	CVE-2007-4500 CVE-2007-4501
MLIST:[VIM] 20070821 Recent DB2 Vulnerabilities	CVE-2007-4270 CVE-2007-4271 CVE-2007-4272 CVE-2007-4273 CVE-2007-4275 CVE-2007-4276 CVE-2007-4417 CVE-2007-4418 CVE-2007-4423
MLIST:[VIM] 20070911 MIL 4383	CVE-2007-4817
MLIST:[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability	CVE-2007-1561 CVE-2007-1594
MLIST:[VOIPSEC] 20071216 Trixbox Arbitrary Command Execution Vulnerability	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 Trixbox Arbitrary Command Execution Vulnerability	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vuln (CVE-2007-6424) - PoC exploit code	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vulnerability fluff	CVE-2007-6424
MLIST:[Vortex] 20070530 [ANN] Vortex Library 1.0.3 "Hands open release" is ready!	CVE-2007-3046
MLIST:[Vserver] 20031218 SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20031219 Re: SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20031220 Re: SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20050108 [Advisory] procfs in vserver	CVE-2004-2613
MLIST:[Vserver] 20060428 [SECURITY] ccaps not limited to root inside a guest	CVE-2006-2110
MLIST:[WWW-Mobile-Code] 20030706 can - IIS Version Disclosure	CVE-2003-1306
MLIST:[Wikitech-l] 20060523 MediaWiki 1.6.5 JavaScript Execution Vulnerability # 2	CVE-2006-2611
MLIST:[Xen-devel] 20071029 [PATCH] x86: allow pv guests to disable TSC for applications	CVE-2007-5907
MLIST:[Xen-devel] 20071031 [PATCH, fixed] x86: fix debug register handling	CVE-2007-5906
MLIST:[Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size	CVE-2008-1952
MLIST:[Xen-devel] 20090513 [PATCH] linux/i386: hypervisor_callback adjustments	CVE-2009-1758
MLIST:[Xorg] 20040613 DRI merging	CVE-2006-6730
MLIST:[Zope-Annce] 20060821 Hotfix for Further reST Integration Issue	CVE-2006-4684
MLIST:[Zope-announce] 20060706 Serious security problem with Zope 2	CVE-2006-3458
MLIST:[Zope-dev] 20090706 zope.html with FCKEditor security fix	CVE-2009-2265
MLIST:[Zope] 20080812 Script (Python) insecure ?	CVE-2008-5102
MLIST:[alerts] 20070530 VMS83A_PASRTL-V0100, ECO Kit Release	CVE-2007-2998
MLIST:[alerts] 20070530 VMS83I_PASRTL-V0100, ECO Kit Release	CVE-2007-2998
MLIST:[alerts] 20080820 VMS732_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS821I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS82A_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS831H1I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS83A_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS83I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[announce] 20061013 ViewVC 1.0.3 released [SECURITY FIXES]	CVE-2006-5442
MLIST:[announce] 20070314 Horde 3.1.4 (final)	CVE-2007-1473 CVE-2007-1474
MLIST:[announce] 20070314 IMP H3 (4.1.4) (final)	CVE-2007-1515
MLIST:[announce] 20070712 MySQL Community Server 5.0.45 has been released!	CVE-2007-2691 CVE-2007-2692 CVE-2007-3780 CVE-2007-3781 CVE-2007-3782
MLIST:[announce] 20080109 Horde 3.1.6 (final)	CVE-2007-6018 CVE-2008-7218
MLIST:[announce] 20080109 Horde Groupware 1.0.3 (final)	CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Kronolith H3 (2.1.7) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Mnemo H3 (2.1.2) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Nag H3 (2.1.4) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Turba H3 (2.1.6) (final)	CVE-2008-7218
MLIST:[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final)	CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Horde 3.2-RC2	CVE-2008-7218
MLIST:[announce] 20080122 Kronolith H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Mnemo H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Nag H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Turba H3 (2.2-RC2)	CVE-2008-7218
MLIST:[announce] 20080206 Horde Groupware 1.1-RC2	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080215 Horde Groupware 1.0.4 (final)	CVE-2008-0807
MLIST:[announce] 20080215 Horde Groupware Webmail Edition 1.0.5 (final)	CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.1.7) (final)	CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.2-RC3)	CVE-2008-0807
MLIST:[announce] 20080307 Horde Groupware 1.0.5 (final)	CVE-2008-1284
MLIST:[announce] 20080307 Horde Groupware Webmail Edition 1.0.6 (final)	CVE-2008-1284
MLIST:[announce] 20080307 Horde 3.1.7 (final)	CVE-2008-1284
MLIST:[announce] 20080613 Turba H3 (2.2.1) (final)	CVE-2008-6746
MLIST:[announce] 20081210 Turba 2.3.1 (final)	CVE-2008-4182
MLIST:[announce] 20090108 NTP 4.2.4p6 Released	CVE-2009-0021
MLIST:[announce] 20090127 Horde 3.2.4 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde 3.3.3 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde Groupware 1.1.5 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 IMP 4.2.2 (final)	CVE-2009-0930
MLIST:[announce] 20090127 IMP 4.3.3 (final)	CVE-2009-0930
MLIST:[announce] 20090705 Passwd H3 (3.1.1) (final)	CVE-2009-2360
MLIST:[announce] 20091107 CVE-2009-3555 - apache/mod_ssl vulnerability and mitigation	CVE-2009-3555
MLIST:[announce] Horde 3.2.3 (final)	CVE-2008-5917
MLIST:[announce] Horde 3.3.1 (final)	CVE-2008-5917
MLIST:[apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3	CVE-2008-2370
MLIST:[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c	CVE-2003-0993
MLIST:[apache-cvs] 20040307 cvs commit: httpd-2.0/modules/ssl ssl_engine_io.c	CVE-2004-0113
MLIST:[apache-cvs] 20070801 svn commit: r561616 - in /httpd/httpd/trunk: CHANGES	CVE-2007-3847
MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]]	CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]]	CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-httpd-announce] 20030120 [ANNOUNCE] Apache 2.0.44 Released	CVE-2003-0016
MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released	CVE-2005-2088
MLIST:[apache-httpd-dev] 20020925 CGI bucket needed	CVE-2002-1850
MLIST:[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk)	CVE-2007-3304
MLIST:[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x	CVE-2007-3304
MLIST:[apache-httpd-dev] 20070801 Re: svn commit: r561616 - in /httpd/httpd/trunk: CHANGES modules/proxy/proxy_util.c	CVE-2007-3847
MLIST:[apache-httpd-dev] 20090423 Includes vs IncludesNoExec security issue - help needed	CVE-2009-1195
MLIST:[apache-httpd-dev] 20090628 mod_deflate DoS	CVE-2009-1891
MLIST:[apache-httpd-dev] 20090703 Re: mod_deflate DoS	CVE-2009-1891
MLIST:[apache-modssl] 20040716 [ANNOUNCE] mod_ssl 2.8.19 for Apache 1.3.31	CVE-2004-0700
MLIST:[apache-modssl] 20050902 [ANNOUNCE] mod_ssl 2.8.24-1.3.33	CVE-2005-2700
MLIST:[apr-dev] 20090602 [PATCH] prevent "billion laughs" attack against expat	CVE-2009-1955
MLIST:[audacity-devel] 20090110 Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow	CVE-2009-0490
MLIST:[avahi-tickets] 20061106 [Avahi] #69: Avahi needs to check the originating process of netlink messages	CVE-2006-5461
MLIST:[balsa-list] 20070704 balsa-2.3.17 released	CVE-2007-1558
MLIST:[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1	CVE-2006-2916 CVE-2006-4447
MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised]	CVE-2006-2937 CVE-2006-2940 CVE-2006-4339
MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory.	CVE-2007-0493 CVE-2007-0494
MLIST:[bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available.	CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available.	CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available.	CVE-2008-4163
MLIST:[bk-commits-head] 20050319 [PATCH] Fix crash while reading /proc/net/route	CVE-2005-1041
MLIST:[bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data	CVE-2005-4881
MLIST:[bluez-devel] 20050804 Possible security vulnerability in hcid when calling pin helper	CVE-2005-2547
MLIST:[bluez-devel] 20080616 SDP payload processing vulnerability	CVE-2008-2374
MLIST:[bug-anubis] 20040228 Important security update	CVE-2004-0353 CVE-2004-0354
MLIST:[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted.	CVE-2006-2362
MLIST:[bug-ed] 20080821 Version 1.0 of GNU ed released	CVE-2008-3916
MLIST:[bug-gnu-utils] 19990625 Re: bug in gzip: segfault when doing "gzip -t" on a broken file	CVE-2005-2458
MLIST:[bug-wget] 20090922 Release: GNU Wget 1.12	CVE-2009-3490
MLIST:[cacti-announce] 20050701 Cacti 0.8.6f Released	CVE-2005-2148 CVE-2005-2149
MLIST:[cadaver] 20070123 release 0.22.5	CVE-2007-0157
MLIST:[cisco-nsp] 20070817 About the posting entitled "Heads up: "sh ip bgp regexp" crashing router"	CVE-2007-4430
MLIST:[cisco-nsp] 20070817 Heads up: "sh ip bgp regexp" crashing router	CVE-2007-4430
MLIST:[clamav-announce] 20081126 announcing ClamAV 0.94.2	CVE-2008-5314
MLIST:[clamav-devel] 20070418 Bug in OLE2 file parser	CVE-2007-2650
MLIST:[cluster-devel] 20070619 cluster/cman/daemon daemon.c	CVE-2007-3373 CVE-2007-3374
MLIST:[commits] 20060504 bk commit into 4.1 tree (bar:1.2474)	CVE-2006-4226
MLIST:[commits] 20060620 bk commit into 5.0 tree (kroki:1.2168) BUG#18630	CVE-2006-4227
MLIST:[conquest] 20070303 Re: security bugs in conquest	CVE-2007-1371
MLIST:[cosmo-dev] 20071207 Chandler Server (Cosmo) 0.10.1 released	CVE-2007-6383
MLIST:[courier-announce] 20080608 courier-authlib 0.60.6 released	CVE-2008-2667
MLIST:[courier-users] 20050824 Re: [SECUNIA] Vulnerability in SqWebMail	CVE-2005-2724
MLIST:[courier-users] 20080314 Re: [courier-users] [Fwd: Re: authmysql vs apostrophe]	CVE-2008-2667
MLIST:[cryptography] 20091105 OpenSSL 0.9.8l released	CVE-2009-3555
MLIST:[cscope-cvs] 20090410 CVS: cscope/src snprintf.c, NONE, 1.1 build.c, 1.14, 1.15 command.c, 1.32, 1.33 dir.c, 1.30, 1.31 display.c, 1.29, 1.30 edit.c, 1.6, 1.7 exec.c, 1.11, 1.12 find.c, 1.20, 1.21 global.h, 1.36, 1.37 main.c, 1.45, 1.46 Makefile.am, 1.12, 1.13 Makefile.in, 1.15, 1.16 vpaccess.c, 1.2, 1.3 vpfopen.c, 1.3, 1.4 vpopen.c, 1.4, 1.5	CVE-2009-0148
MLIST:[curl-users] 20030529 Re: https, redirection and authentication using POST	CVE-2003-1311 CVE-2003-1312
MLIST:[current-users] 20061110 [Security Fix] ptrace insufficient bounds checking	CVE-2006-6014
MLIST:[cvs-all] 20081102 cvs commit: ports/emulators/qemu Makefile ports/emulators/qemu/files patch-CVE-2008-4539 ports/emulators/qemu-devel Makefile ports/emulators/qemu-devel/files patch-CVE-2008-4539	CVE-2008-4539
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/	CVE-2009-1553
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/java/com/sun/enterprise/tools/admingui/handlers/CommonHandlers.java	CVE-2009-1553
MLIST:[cvs] 20090321 CVS update: /woodstock/webui/src/runtime/com/sun/webui/theme/ThemeServlet.java	CVE-2009-1554
MLIST:[cvs] 20090322 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/configuration/	CVE-2009-1553
MLIST:[cygwin-announce] 20080805 Updated: Setup.exe updated to version 2.573.2.3	CVE-2008-3323
MLIST:[cygwin-developers] 20071108 Re: cygwin1.dll up to 1.5.22 overflow	CVE-2007-6181
MLIST:[cygwin-developers] 20071120 Re: cygwin1.dll up to 1.5.22 overflow	CVE-2007-6181
MLIST:[cyrus-announce] 20041122 Cyrus IMAPd 2.2.9 Released	CVE-2004-1011 CVE-2004-1012 CVE-2004-1013
MLIST:[cyrus-announce] 20041123 Cyrus IMAPd 2.2.10 Released	CVE-2004-1015
MLIST:[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2)	CVE-2006-0454
MLIST:[dailydave] 20070110 Algorithmic Bugs	CVE-2006-6931
MLIST:[dailydave] 20070130 Vista speach recognition	CVE-2007-0675
MLIST:[dailydave] 20070131 Vista speach recognition	CVE-2007-0675
MLIST:[dailydave] 20070216 Minor Virtualization Vulnerability	CVE-2007-1222
MLIST:[dailydave] 20070227 Wow, free kernel zero day?	CVE-2007-1189
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption	CVE-2007-1922
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero)	CVE-2007-1921
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption	CVE-2007-1922
MLIST:[dailydave] 20070706 (no subject)	CVE-2007-3634 CVE-2007-3637
MLIST:[dailydave] 20070708 SquirrelMail GPG Plugin vuln	CVE-2007-3634 CVE-2007-3778
MLIST:[dailydave] 20070709 SquirrelMail GPG Plugin vuln	CVE-2007-3634 CVE-2007-3636 CVE-2007-3778
MLIST:[dailydave] 20080811 A new datapoint for 0day lifetime	CVE-2008-4434
MLIST:[dailydave] 20081002 TCP Resource Exhaustion DoS Attack Speculation	CVE-2008-4609
MLIST:[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec	CVE-2008-5230
MLIST:[dailydave] 20090219 SSL MITM fun.	CVE-2009-0652
MLIST:[dailydave] 20090220 SSL MITM fun.	CVE-2009-0652
MLIST:[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20	CVE-2008-0595
MLIST:[dbus] 20081205 [CVE-2008-4311] DBus 1.2.6	CVE-2008-4311
MLIST:[dccp] 20070328 [PATCH 1/1] getsockopt: Fix DCCP_SOCKOPT_[SEND,RECV]_CSCOV	CVE-2007-1730
MLIST:[debian-apache] 20050119 Bug#290974: marked as done (apache: Temporary usage bugs that can be used in symlink attacks)	CVE-2004-1387
MLIST:[debian-bugs-dist] 20090810 Bug#540865: libxml2: CVE-2009-2414, CVE-2009-2416 pointer-user-after-free and stack overflow because of function recursion	CVE-2009-2414 CVE-2009-2416
MLIST:[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd	CVE-2008-5983 CVE-2009-0316
MLIST:[debian-bugs-rc] 20090430 Bug#526258: CVE-2009-1339: CSRF Vulnerability with Image Tag	CVE-2009-1339
MLIST:[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory	CVE-2008-5983
MLIST:[debian-devel-changes] 20030909 Accepted kdbg 1.2.9-1 (i386 source)	CVE-2003-0644
MLIST:[debian-devel-changes] 20081101 Accepted qemu 0.9.1+svn20081101-1 (source amd64)	CVE-2008-4539
MLIST:[debian-devel] 20080811 Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-4474 CVE-2008-4475
MLIST:[debian-devel] 20080811 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-5135 CVE-2008-5136 CVE-2008-5137 CVE-2008-5138 CVE-2008-5139 CVE-2008-5140 CVE-2008-5141 CVE-2008-5142 CVE-2008-5143 CVE-2008-5144 CVE-2008-5145 CVE-2008-5366 CVE-2008-5367 CVE-2008-5368 CVE-2008-5369 CVE-2008-5370 CVE-2008-5371 CVE-2008-5372 CVE-2008-5378 CVE-2008-5379 CVE-2008-5380 CVE-2008-6398
MLIST:[debian-devel] 20080812 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-4476 CVE-2008-4477 CVE-2008-6397
MLIST:[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-5146 CVE-2008-5147 CVE-2008-5148 CVE-2008-5149 CVE-2008-5150 CVE-2008-5151 CVE-2008-5152 CVE-2008-5153 CVE-2008-5154 CVE-2008-5155 CVE-2008-5156 CVE-2008-5157 CVE-2008-5373 CVE-2008-5374 CVE-2008-5375 CVE-2008-5376 CVE-2008-5377
MLIST:[debian-kernel] 20050809 Re: ACL patches in Debian 2.4 series kernel.	CVE-2005-2801
MLIST:[debian-security-announce] 20071003 [SECURITY] [DSA 1379-1] New quagga packages fix denial of service	CVE-2007-4826
MLIST:[debian-security] 20080219 qemu unchecked block read/write vulnerability	CVE-2008-0928
MLIST:[debian-sparc] 20060128 `date -s' on sparc64	CVE-2006-0482
MLIST:[debian-testing-security-announce] 20090211 Security update for Debian Testing - 2009-02-12	CVE-2009-0359
MLIST:[debian-testing-security-announce] 20090213 Security update for Debian Testing - 2009-02-14	CVE-2009-0363
MLIST:[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available	CVE-2007-6721
MLIST:[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release	CVE-2007-4548
MLIST:[dev] 20090319 [DSECRG] Sun Glassfish Multiple Security Vulnerabilities	CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090411 Re: [DSECRG] Sun Glassfish Multiple Security Vulnerabilities	CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090424 Buffer overflow in apr_brigade_vprintf() ?	CVE-2009-1956
MLIST:[dev] 20090424 Re: Buffer overflow in apr_brigade_vprintf() ?	CVE-2009-1956
MLIST:[dev] 20090806 Patch to 1.4.x branch for CVE-2009-2411	CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.5.7 Released	CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.6.4 Released	CVE-2009-2411
MLIST:[devel] 20090528 [patch] libpurple/protocols/oscar: OOM and die on misparsed ICQWebMessage as ICQSMS	CVE-2009-1889
MLIST:[devel] 20090910 New version available [was: Is there a specific security contact address?]	CVE-2009-2937
MLIST:[dia-list] 20060329 Vulnerability in xfig import code	CVE-2006-1550
MLIST:[distcc] 20040826 Exploit in distcc ( got compromised ;( )	CVE-2004-2687
MLIST:[distro-pkg-dev] 20090211 changeset in /hg/icedtea6: 2009-02-11 Omair Majid <omajid at redh...	CVE-2009-0794
MLIST:[dns] 20090225 djbdns misformats some long response packets; patch and example	CVE-2009-0858
MLIST:[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains	CVE-2009-0858
MLIST:[dnsmasq-discuss] 20080720 dnsmasq 2.44 available.	CVE-2008-3350
MLIST:[dovecot-cvs] 20070330 dovecot/src/lib-storage/index/mbox mbox-storage.c, 1.145.2.14, 1.145.2.15	CVE-2007-2231
MLIST:[dovecot-news] 20070330 Security hole #3: zlib plugin allows opening any gziped mboxes	CVE-2007-2231
MLIST:[dovecot-news] 20070801 v1.0.3 released	CVE-2007-4211
MLIST:[dropbear] 20051211 Dropbear 0.47 (and security fix)	CVE-2005-4178
MLIST:[ebd-devel] 20060502 actualización de seguridad	CVE-2006-2349
MLIST:[ecryptfs-devel] 20081222 Re: [PATCH, v5] eCryptfs: check readlink result was not an error before using it	CVE-2009-0269
MLIST:[ekiga-list] 20070917 [ANNOUNCE] Ekiga 2.0.10 released	CVE-2007-4924
MLIST:[elinks-users] 20080204 [ANNOUNCE] ELinks 0.11.4rc0	CVE-2008-7224
MLIST:[emacs-devel] 20071003 temp file hole?	CVE-2007-5377
MLIST:[emacs-devel] 20071004 Re: temp file hole?	CVE-2007-5377
MLIST:[emacs-devel] 20080510 [mwelinder@bogus.example.com: Emacs security bug]	CVE-2008-2142
MLIST:[emacs-devel] 20080905 Vulnerability in Emacs python integration	CVE-2008-3949
MLIST:[emdros-announce] 20061201 Emdros version 1.2.0.pre231 released	CVE-2006-6395
MLIST:[enomalism] 20081212 ECP 2.1.1 Released	CVE-2008-4990
MLIST:[eoc] 20061213 EoC 1.2.4 -- security problem fixed, please upgrade immediately	CVE-2006-5875
MLIST:[ethereal-dev] 20040318 ethereal radius dissector vulnerability	CVE-2004-0365
MLIST:[exim-announce] 20020219 Exim 3.35 released	CVE-2002-0274
MLIST:[exim] 20050104 2 smallish security issues	CVE-2005-0021 CVE-2005-0022
MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences	CVE-2009-3720
MLIST:[exploits] 20061201 0-day BlazeHDTV v2.1 Malformed PLF Buffer Overflow Exploit	CVE-2006-6199
MLIST:[fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1	CVE-2003-0989 CVE-2004-0055 CVE-2004-0057
MLIST:[fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel)	CVE-2004-0394
MLIST:[fedora-desktop-list] 20070918 Re: fuse (Was Re: early-gdm redux)	CVE-2007-5159
MLIST:[fedora-devel-list] 20070122 Re: rawhide report: 20070120 changes	CVE-2007-0003
MLIST:[fedora-package-announce] 20070604 [SECURITY] Fedora 7 Update: NetworkManager-0.6.5-3.fc7	CVE-2007-2874
MLIST:[fedora-security-commits] 20080620 fedora-security/audit f10, 1.7, 1.8 f8, 1.225, 1.226 f9, 1.215, 1.216	CVE-2008-2725 CVE-2008-2726
MLIST:[fedora-security-list] 20090612 git daemon DoS	CVE-2009-2108
MLIST:[ffmpeg-cvslog] 20080812 r14714 - trunk/libavformat/utils.c	CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080812 r14715 - trunk/libavformat/avformat.h	CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c	CVE-2008-4868
MLIST:[ffmpeg-cvslog] 20080823 r14917 - trunk/libavcodec/dca.c	CVE-2008-4867
MLIST:[file] 20070302 file-4.20 is now available	CVE-2007-1536
MLIST:[file] 20090501 file 5.01 is now available	CVE-2009-1515
MLIST:[file] 20090504 file-5.02 is now available	CVE-2009-3930
MLIST:[fishcart] 20050521 Re: Concerned about security	CVE-2005-1486
MLIST:[flex-announce] 20060222 flex 2.5.33 released	CVE-2006-0459
MLIST:[fm-news] 20010713 Newsletter for Friday, July 13th 2001	CVE-2001-1081
MLIST:[fm-news] 20041001 Newsletter for Thursday, September 30th 2004	CVE-2004-2153
MLIST:[fm-news] 20041102 Newsletter for Monday, November 01st 2004	CVE-2004-2217
MLIST:[fm-news] 20041123 Newsletter for Monday, November 22nd 2004	CVE-2004-2485
MLIST:[fm-news] 20051208 Newsletter for Thursday, December 08th 2005	CVE-2005-4132
MLIST:[fm-news] 20060204 Newsletter for Friday, February 03rd 2006	CVE-2006-0751
MLIST:[fm-news] 20080113 Newsletter for Saturday, January 12th 2008	CVE-2008-7189 CVE-2008-7197
MLIST:[fm-news] 20080123 Newsletter for Tuesday, January 22nd 2008	CVE-2008-7198
MLIST:[fm-news] 20080126 Newsletter for Friday, January 25th 2008	CVE-2008-7196 CVE-2008-7202
MLIST:[fm-news] 20080206 Newsletter for Tuesday, February 05th 2008	CVE-2008-7228
MLIST:[focus-sun] 20031022 Information disclosure with SMC webserver on Solaris 9	CVE-2004-1354
MLIST:[foswiki-announce] 20090427 Security Alert CVE-2009-1434: Foswiki Page View Cross-Site Request Forgery (CSRF)	CVE-2009-1434
MLIST:[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c	CVE-2006-5483
MLIST:[freebsd-cvs-src] 20060531 cvs commit: src/sys/ufs/ufs ufs_vnops.c	CVE-2006-5482
MLIST:[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff	CVE-2005-0109
MLIST:[freebsd-security] 19961025 Vadim Kolontsov: BoS: Linux & BSD's lpr exploit	CVE-1999-0032
MLIST:[freebsd-security] 20021109 Security issue in net/cvsup-mirror port	CVE-2002-2382
MLIST:[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff]	CVE-2005-0109
MLIST:[freebsd-security] 20060728 Ruby vulnerability?	CVE-2006-3694
MLIST:[freebsd-security] 20060730 Ruby vulnerability?	CVE-2006-3694
MLIST:[freebsd-security] 20061002 FreeBSD Security Advisory FreeBSD-SA-06:22.openssh	CVE-2006-5051
MLIST:[freebsd-security] 20061206 Intel LAN Driver Buffer Overflow Local Privilege Escalation	CVE-2006-6385
MLIST:[freebsd-security] 20070114 MOAB advisories	CVE-2006-5679 CVE-2006-5824 CVE-2007-0229 CVE-2007-0267
MLIST:[freeradius-users] 20090909 Version 1.1.8 has been released	CVE-2009-3111
MLIST:[frox-user] 20050204 Frox 0.7.18 - security fixes.	CVE-2005-2808
MLIST:[frugalware-git] 20081014 kernel2627: ndiswrapper-1.53-6-i686	CVE-2008-4395
MLIST:[ft-devel] 20070427 Bug in fuzzed TTF file	CVE-2007-2754
MLIST:[funsec] 20060110 Another WMF flaw without a Microsoft patch	CVE-2006-0020
MLIST:[funsec] 20060308 DOSing Outlook 2003	CVE-2006-1305
MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow	CVE-2000-1219
MLIST:[gcc-bugs] 20060417 [Bug c/27180] New: pointer arithmetic overflow handling broken	CVE-2006-1902
MLIST:[gcc-bugs] 20060417 [Bug middle-end/27180] New: pointer arithmetic overflow handling broken	CVE-2006-1902
MLIST:[gcc-patches] 20080306 Re: [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[gcc-patches] 20080306 [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[gcc-patches] 20080307 Re: [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[git-commits-head] 20060311 [PATCH] selinux: tracer SID fix	CVE-2006-1052
MLIST:[git-commits-head] 20080307 x86: clear DF before calling signal handler	CVE-2008-1367
MLIST:[git-commits-head] 20080507 sparc: Fix mmap VA span checking.	CVE-2008-2137
MLIST:[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[git] 20080716 [PATCH] Fix buffer overflow in git diff	CVE-2008-3546
MLIST:[git] 20081220 [Security] gitweb local privilege escalation (fix)	CVE-2008-5916
MLIST:[glbs-security-announce] 20070517 Globus Security Advisory 2007-03: Nexus vulnerability	CVE-2007-2784
MLIST:[gnome-announce] 20020503 Patch for serious bug in 1.0.3	CVE-2002-1765
MLIST:[gnome-networkmanager-list] 20050728 format string bug in nm_info_handler	CVE-2005-2410
MLIST:[gnome-networkmanager-list] 20050729 Re: format string bug in nm_info_handler	CVE-2005-2410
MLIST:[gnupg-announce] 20060215 False positive signature verification in GnuPG	CVE-2006-0455
MLIST:[gnupg-announce] 20060309 [Announce] GnuPG does not detect injection of unsigned data	CVE-2006-0049
MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow	CVE-2006-6169
MLIST:[gnupg-announce] GnuPG: remotely controllable function pointer [CVE-2006-6235]	CVE-2006-6235
MLIST:[gnupg-devel] 20060215 [Announce] False positive signature verification in GnuPG	CVE-2006-0455
MLIST:[gnupg-users] 20070306 [Announce] Multiple Messages Problem in GnuPG and GPGME	CVE-2007-1263 CVE-2007-1264 CVE-2007-1265 CVE-2007-1266 CVE-2007-1267 CVE-2007-1268 CVE-2007-1269
MLIST:[gnutls-dev] 20040802 gnutls 1.0.17	CVE-2004-2531
MLIST:[gnutls-dev] 20050428 GnuTLS 1.2.3 and 1.0.25	CVE-2005-1431
MLIST:[gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060908 Variant of Bleichenbacher's crypto 06 rump session attack	CVE-2006-4790
MLIST:[gnutls-dev] 20060912 Re: Variant of Bleichenbacher's crypto 06 rump session attack	CVE-2006-4790
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1]	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.5 - Brown paper bag release	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 Re: GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1]	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080630 Details on the gnutls_handshake local crash problem [GNUTLS-SA-2008-2]	CVE-2008-2377
MLIST:[gnutls-devel] 20080630 GnuTLS 2.4.1	CVE-2008-2377
MLIST:[gnutls-devel] 20081110 Analysis of vulnerability GNUTLS-SA-2008-3 CVE-2008-4989	CVE-2008-4989
MLIST:[gnutls-devel] 20081110 GnuTLS 2.6.1 - Security release [GNUTLS-SA-2008-3]	CVE-2008-4989
MLIST:[gnutls-devel] 20090423 Re: some crashes on using DSA keys	CVE-2009-1415
MLIST:[gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416]	CVE-2009-1416
MLIST:[gnutls-devel] 20090430 Certificate expiration not checked by gnutls-cli [GNUTLS-SA-2009-3] [CVE-2009-1417]	CVE-2009-1417
MLIST:[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]	CVE-2009-1415
MLIST:[gnutls-devel] 20091105 Re: TLS renegotiation MITM	CVE-2009-3555
MLIST:[gosa] 20070115 GOsa 2.5.8 released (security fixes!)	CVE-2007-0313
MLIST:[gpa-dev] 20050531 S/MIME signing fails on a SUSE 9.3 system	CVE-2005-2023
MLIST:[gpa-dev] 20050603 Re: S/MIME signing fails on a SUSE 9.3 system	CVE-2005-2023
MLIST:[gtk-devel-list] 20071107 GLib 2.14.3	CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768
MLIST:[havp-devel] 20080715 Infinite loop which causes havp to block completely	CVE-2008-3688
MLIST:[heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6	CVE-2006-0582 CVE-2006-0677
MLIST:[help-gnutls] 20090420 Encryption using DSA keys	CVE-2009-1416
MLIST:[horde-announce] 20041026 Horde 2.2.7 (final)	CVE-2004-2741
MLIST:[horde-announce] 20051122 Horde 3.0.7 (final)	CVE-2005-3759
MLIST:[horde-announce] 20051211 Horde 3.0.8 (final)	CVE-2005-4190
MLIST:[horde-announce] 20051211 Kronolith H3 (2.0.6) (final)	CVE-2005-4189
MLIST:[horde-announce] 20051211 Mnemo H3 (2.0.3) (final)	CVE-2005-4192
MLIST:[horde-announce] 20051211 Nag H3 (2.0.4) (final)	CVE-2005-4191
MLIST:[horde-announce] 20051211 Turba H3 (2.0.5) (final)	CVE-2005-4242
MLIST:[horde-announce] 20060817 Horde 3.1.3 (final)	CVE-2006-4256
MLIST:[horde-announce] 20060817 IMP H3 (4.1.3) (final)	CVE-2006-4255
MLIST:[horde-announce] 20061018 Ingo H3 (1.1.2) (final)	CVE-2006-5449
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.0.7) (final)	CVE-2006-6175
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.1.4) (final)	CVE-2006-6175
MLIST:[horde-announce] 20070114 Horde Groupware 1.0 (final)	CVE-2007-0579
MLIST:[horde-announce] 20070114 Horde Groupware Webmail Edition 1.0 (final)	CVE-2007-0579
MLIST:[horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final)	CVE-2008-3650
MLIST:[horde-announce] 20080910 Horde 3.1.9 (final)	CVE-2008-3824
MLIST:[horde-announce] 20080910 [SECURITY] Horde 3.2.2 (final)	CVE-2008-3823 CVE-2008-3824
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.1.6 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.2.4 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.1.6 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.2.4 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.2.5 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.3.5 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[httpd-python-dev] 20040416 Re: possible bug in filter.write()	CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 patch for filterobject.c	CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 possible bug in filter.write()	CVE-2004-2680
MLIST:[hylafax-announce] 20050111 ANOUNCE hylafax-4.2.1 released	CVE-2004-1182
MLIST:[hylafax-users] 20051212 Re: proceedure for hylafax setup for PAM authentiation	CVE-2005-3538
MLIST:[icu-support] 20080122 ICU Patch for bugs in Regular Expressions	CVE-2007-4770 CVE-2007-4771
MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error	CVE-2006-4339 CVE-2006-4340
MLIST:[imap-uw] 20081031 Security bug in tmail and dmail	CVE-2008-5005
MLIST:[imp] 20050422 IMP 3.2.8 (final)	CVE-2005-1319
MLIST:[info-cyrus] 20050214 Cyrus IMAPd 2.2.11 Released	CVE-2005-0546
MLIST:[interchange-announce] 20040329 Security Problem in Interchange	CVE-2004-0374
MLIST:[interchange-announce] 20050922 Important: Security flaw found in Interchange demo catalog.	CVE-2005-3073
MLIST:[interchange-announce] 20050923 Important: Security flaw found in Interchange demo - Addendum	CVE-2005-3073
MLIST:[ipsec-tools-announce] 20080724 Ipsec-tools 0.7.1 released	CVE-2008-3651
MLIST:[ipsec-tools-announce] 20090422 Ipsec-tools 0.7.2 released	CVE-2009-1632
MLIST:[ipsec-tools-devel] 20050312 potential remote crash in racoon	CVE-2005-0398
MLIST:[ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools	CVE-2005-3732
MLIST:[ipsec-tools-devel] 20080724 Ipsec-tools 0.7.1 released	CVE-2008-3651
MLIST:[ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s	CVE-2008-3652
MLIST:[ircd-ratbox] 20070514 IMPORTANT: potential DoS found in ircd-ratbox	CVE-2007-2786
MLIST:[jabberd] 20040919 Jabberd 1.4 critical bug	CVE-2004-1378
MLIST:[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update	CVE-2007-1354
MLIST:[karrigell-main] 20050731 SECURITY: python namespace exposure	CVE-2005-2483
MLIST:[karrigell-main] 20050802 Re: SECURITY: python namespace exposure	CVE-2005-2483
MLIST:[kde-announce] 20070309 KTorrent 2.1.2 is out	CVE-2007-1384 CVE-2007-1385
MLIST:[kernel-svn-changes] 20050816 r3920 - in branches/dist/sarge-security: . kernel kernel/i386 kernel/source kernel/source/kernel-source-2.6.8-2.6.8/debian	CVE-2005-0136
MLIST:[kmail-devel] 20050215 [Bug 96020] HTML Allows Spoofing of Emails Content	CVE-2005-0404
MLIST:[kolab-users] 20040420 Possible Kolab LDAP configuration information disclosure	CVE-2004-1997
MLIST:[kronolith] 20050422 Kronolith 1.1.4 (final)	CVE-2005-1314
MLIST:[kronolith] 20080427 Kronolith H3 (2.1.8) (final)	CVE-2008-1974
MLIST:[libc-hacker] [PATCH] Fix LD_HWCAP_MASK handling	CVE-2007-3508
MLIST:[libcdio-devel] 20071231 buffer overrun in cd-info and iso-info and a release?	CVE-2007-6613
MLIST:[libgadu-devel] 20081024 libgadu 1.8.2	CVE-2008-4776
MLIST:[libvir-list] 20090127 [libvirt] [PATCH] proxy: Fix use of uninitalized memory	CVE-2009-0036
MLIST:[libvir-list] 20090128 Re: [libvirt] [PATCH] proxy: Fix use of uninitalized memory	CVE-2009-0036
MLIST:[libvirt] 20081217 [SECURITY] PATCH: Fix missing read-only access checks (CVE-2008-5086)	CVE-2008-5086
MLIST:[linux-audit] 20080330 audit 1.7 released	CVE-2008-1628
MLIST:[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field	CVE-2009-1439
MLIST:[linux-ia64] 20040916 Re: [Patch] Per CPU MCA/INIT data save areas	CVE-2005-0136
MLIST:[linux-ia64] [PATCH 1/1] ia64: perfmon.c trips BUG_ON in put_page_testzero	CVE-2006-0558
MLIST:[linux-kernel] 20020417 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020417 SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020418 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020422 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20031105 BK2CVS problem	CVE-2003-1161
MLIST:[linux-kernel] 20031105 Re: BK2CVS problem	CVE-2003-1161
MLIST:[linux-kernel] 20040105 linux-2.4.24 released	CVE-2003-0985
MLIST:[linux-kernel] 20040219 Re: Oopsing cryptoapi (or loop device?) on 2.6.*	CVE-2004-2135 CVE-2004-2136
MLIST:[linux-kernel] 20040402 Re: disable-cap-mlock	CVE-2004-0491
MLIST:[linux-kernel] 20040408 [PATCH]: 2.4/2.6 do_fork() error path memory leak	CVE-2004-0427
MLIST:[linux-kernel] 20040416 Re: [CHECKER] Probable security holes in 2.6.5	CVE-2004-2607
MLIST:[linux-kernel] 20040609 timer + fpu stuff locks my console race	CVE-2004-0554
MLIST:[linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss	CVE-2005-3271
MLIST:[linux-kernel] 20041111 a.out issue	CVE-2004-1074
MLIST:[linux-kernel] 20041114 [PATCH] linux 2.9.10-rc1: Fix oops in unix_dgram_sendmsg when using	CVE-2004-1069
MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall()	CVE-2004-1151
MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050301 Re: Breakage from patch: Only root should be able to set the N_MOUSE line discipline.	CVE-2005-0839
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in pktcdvd	CVE-2005-1589
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in raw device	CVE-2005-1264
MLIST:[linux-kernel] 20050805 [PATCH] Fix hugepage crash on failing mmap()	CVE-2005-4811
MLIST:[linux-kernel] 20050817 [PATCH 2.6.12.5] NPTL signal delivery deadlock fix	CVE-2005-3847
MLIST:[linux-kernel] 20050817 [PATCH] fix dst_entry leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050818 Re: [PATCH] fix dst_entry leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 2/7] [PATCH] NPTL signal delivery deadlock fix	CVE-2005-3847
MLIST:[linux-kernel] 20050826 [PATCH 4/7] [IPV4]: Fix DST leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 7/7] [IPV6]: Fix SKB leak in ip6_input_finish()	CVE-2005-3858
MLIST:[linux-kernel] 20050829 Re: Linux 2.6.12.6	CVE-2005-3858
MLIST:[linux-kernel] 20050912 [PATCH] nfs client, kernel 2.4.31: readlink result overflow	CVE-2005-4798
MLIST:[linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio	CVE-2005-3055
MLIST:[linux-kernel] 20051112 Re: local denial-of-service with file leases	CVE-2005-3857
MLIST:[linux-kernel] 20051113 [GIT] Fix memory leak in lease code	CVE-2005-3807 CVE-2005-3857
MLIST:[linux-kernel] 20051122 [patch 11/23] [PATCH] [NETFILTER] ctnetlink: check if protoinfo is present	CVE-2005-3809
MLIST:[linux-kernel] 20051122 [patch 13/23] [PATCH] [NETFILTER] ctnetlink: Fix oops when no ICMP ID info in message	CVE-2005-3810
MLIST:[linux-kernel] 20051123 32bit integer overflow in invalidate_inode_pages2() (local DoS)	CVE-2005-3808
MLIST:[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host)	CVE-2006-5158
MLIST:[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host)	CVE-2006-5158
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: Zero key material before free to avoid information leak	CVE-2006-0095
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: zero key before freeing it	CVE-2006-0095
MLIST:[linux-kernel] 20060207 Linux 2.6.15.3	CVE-2006-0454
MLIST:[linux-kernel] 20060207 Re: Linux 2.6.15.3	CVE-2006-0454
MLIST:[linux-kernel] 20060207 [PATCH] arch/x86_64/kernel/traps.c PTRACE_SINGLESTEP oops	CVE-2006-1066
MLIST:[linux-kernel] 20060411 [PATCH] __group_complete_signal: remove bogus BUG_ON	CVE-2006-1523
MLIST:[linux-kernel] 20060419 RE: Linux 2.6.16.9	CVE-2006-1056
MLIST:[linux-kernel] 20060426 [PATCH] LSM: add missing hook to do_compat_readv_writev()	CVE-2006-1856
MLIST:[linux-kernel] 20060526 PROBLEM: /proc (procfs) task exit race condition causes a kernelcrash	CVE-2006-2629
MLIST:[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks	CVE-2006-2445
MLIST:[linux-kernel] 20060717 [patch 25/45] splice: fix problems with sys_tee()	CVE-2007-0997
MLIST:[linux-kernel] 20061105 Linux 2.6.16.31-rc1	CVE-2006-4572 CVE-2006-5174 CVE-2006-5619
MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106)	CVE-2006-6106
MLIST:[linux-kernel] 20061219 BUG: wedged processes, test program supplied	CVE-2006-6921
MLIST:[linux-kernel] 20061219 Linux 2.6.18.6	CVE-2006-6106
MLIST:[linux-kernel] 20061220 Re: BUG: wedged processes, test program supplied	CVE-2006-6921
MLIST:[linux-kernel] 20070508 Re: [PATCH -utrace] Move utrace into task_struct	CVE-2008-2365
MLIST:[linux-kernel] 20070608 Linux 2.6.20.13	CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070608 Linux 2.6.21.4	CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070720 [PATCH] splice: fix bad unlock_page() in error case	CVE-2008-4302
MLIST:[linux-kernel] 20070731 Re: [PATCH] add check do_direct_IO() return val	CVE-2007-6716
MLIST:[linux-kernel] 20070921 Linux 2.6.22.7	CVE-2007-4573
MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7	CVE-2007-4573
MLIST:[linux-kernel] 20071108 Buffer overflow in CIFS VFS.	CVE-2007-5904
MLIST:[linux-kernel] 20071108 [PATCH] time: fix sysfs_show_{available,current}_clocksources() buffer overflow problem	CVE-2007-5908
MLIST:[linux-kernel] 20071109 Re: Fw: Buffer overflow in CIFS VFS.	CVE-2007-5904
MLIST:[linux-kernel] 20071116 Linux 2.6.23.8	CVE-2007-5501
MLIST:[linux-kernel] 20071122 [PATCH] PPC: CHRP - fix possible NULL pointer dereference	CVE-2007-6694
MLIST:[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007)	CVE-2008-0007
MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit	CVE-2008-0600
MLIST:[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs	CVE-2009-0859
MLIST:[linux-kernel] 20080305 Linux doesn't follow x86/x86-64 ABI wrt direction flag	CVE-2008-1367
MLIST:[linux-kernel] 20080429 [04/12] tehuti: check register size (CVE-2008-1675)	CVE-2008-1675
MLIST:[linux-kernel] 20080429 [26/37] tehuti: check register size (CVE-2008-1675)	CVE-2008-1675
MLIST:[linux-kernel] 20080429 [27/37] tehuti: move ioctl perm check closer to function start	CVE-2008-1675
MLIST:[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23	CVE-2008-2372
MLIST:[linux-kernel] 20080501 Linux 2.6.24.6	CVE-2008-1375
MLIST:[linux-kernel] 20080501 Linux 2.6.25.1	CVE-2008-1375
MLIST:[linux-kernel] 20080509 Re: When should kfree_skb be used?	CVE-2008-2136
MLIST:[linux-kernel] 20080513 [patch 25/37] sparc: Fix mremap address range validation.	CVE-2008-6107
MLIST:[linux-kernel] 20080702 Is VFS behavior fine?	CVE-2008-3275
MLIST:[linux-kernel] 20080723 Re: [PATCH 1/2] signals: kill(-1) should only signal processes in the same namespace	CVE-2009-1338
MLIST:[linux-kernel] 20080726 tmpfs: kernel BUG at mm/shmem.c:814	CVE-2008-3534
MLIST:[linux-kernel] 20080730 2.6.27-rc1: IP: iov_iter_advance+0x2e/0x90	CVE-2008-3535
MLIST:[linux-kernel] 20080730 [patch 40/62] V4L: uvcvideo: Fix a buffer overflow in format descriptor parsing	CVE-2008-3496
MLIST:[linux-kernel] 20080807 OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175	CVE-2008-3686
MLIST:[linux-kernel] 20080808 Re: OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175	CVE-2008-3686
MLIST:[linux-kernel] 20080823 [GIT]: Networking	CVE-2008-3792
MLIST:[linux-kernel] 20080830 Re: buffer overflow in /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[linux-kernel] 20080830 buffer overflow in /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[linux-kernel] 20080903 [patch 05/16] nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[linux-kernel] 20080913 [PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20080913 [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20080918 Re: [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20081005 [PATCH 04/19] ib700wdt: Fix off by one	CVE-2008-5702
MLIST:[linux-kernel] 20081006 [patch 58/71] sctp: Fix oops when INIT-ACK indicates that peer doesnt support AUTH	CVE-2008-4576
MLIST:[linux-kernel] 20081220 [Security] gitweb local privilege escalation (fix)	CVE-2008-5916
MLIST:[linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning	CVE-2009-0029
MLIST:[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[linux-kernel] 20090130 [PATCH] Fix memory corruption in console selection	CVE-2009-1046
MLIST:[linux-kernel] 20090131 [patch 03/43] inotify: clean up inotify_read and fix locking	CVE-2009-0935
MLIST:[linux-kernel] 20090202 Re: [PATCH] Fix memory corruption in console selection	CVE-2009-1046
MLIST:[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2	CVE-2009-0676
MLIST:[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak	CVE-2009-0676
MLIST:[linux-kernel] 20090225 Re: [PATCH 2/2] exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole	CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes	CVE-2009-0834 CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole	CVE-2009-0834
MLIST:[linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole	CVE-2009-0835
MLIST:[linux-kernel] 20090311 VFS, NFS security bug? Should CAP_MKNOD and CAP_LINUX_IMMUTABLE be added to CAP_FS_MASK?	CVE-2009-1072
MLIST:[linux-kernel] 20090502 Linux 2.6.27.21	CVE-2009-1184
MLIST:[linux-kernel] 20090502 Linux 2.6.28.10	CVE-2009-1184
MLIST:[linux-kernel] 20090608 [Security, resend] Instant crash with rtl8169 and large packets	CVE-2009-1389
MLIST:[linux-kernel] 20090622 Fix for shared flat binary format in 2.6.30	CVE-2009-2768
MLIST:[linux-kernel] 20090623 [PATCH 0/1] mm_for_maps: simplify, use ptrace_may_access()	CVE-2009-2691
MLIST:[linux-kernel] 20090623 [PATCH 1/1] mm_for_maps: simplify, use ptrace_may_access()	CVE-2009-2691
MLIST:[linux-kernel] 20090706 Re: PROBLEM: tun/tap crashes if open() /dev/net/tun and then poll() it.	CVE-2009-1897
MLIST:[linux-kernel] 20090710 [PATCH 1/2] mm_for_maps: shift down_read(mmap_sem) to the caller	CVE-2009-2691
MLIST:[linux-kernel] 20090710 [PATCH 2/2] mm_for_maps: take ->cred_guard_mutex to fix the race	CVE-2009-2691
MLIST:[linux-kernel] 20090720 Re: [PATCH] sgi-gru: Fix kernel stack buffer overrun	CVE-2009-2584
MLIST:[linux-kernel] 20090721 [PATCH] sgi-gru: Fix kernel stack buffer overrun	CVE-2009-2584
MLIST:[linux-kernel] 20090801 [PATCH v2] execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[linux-kernel] 20090804 Re: [PATCH] posix-timers: fix oops in clock_nanosleep() with CLOCK_MONOTONIC_RAW	CVE-2009-2767
MLIST:[linux-kernel] 20090819 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090819 v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090820 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090902 [BUG] 2.6.31-rc8 readcd Oops	CVE-2009-3288
MLIST:[linux-kernel] 20090903 [PATCH] sg: fix oops in the error path in sg_build_indirect()	CVE-2009-3288
MLIST:[linux-kernel] 20090916 [patch 15/45] perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[linux-kernel] 20090921 [git pull] drm tree.	CVE-2009-3620
MLIST:[linux-kernel] 20091001 [tip:x86/urgent] x86: Don't leak 64-bit kernel register values to 32-bit processes	CVE-2009-2910
MLIST:[linux-kernel] 20091002 Re: [PATCH 0/8] SECURITY ISSUE with connector	CVE-2009-3725
MLIST:[linux-kernel] 20091002 [071/136] net ax25: Fix signed comparison in the sockopt handler	CVE-2009-2909
MLIST:[linux-kernel] 20091014 fs/pipe.c null pointer dereference	CVE-2009-3547
MLIST:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs	CVE-2009-3547
MLIST:[linux-mtd] 20070822 [JFFS2] Fix ACL vs. mode handling.	CVE-2007-4849
MLIST:[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and	CVE-2006-1342 CVE-2006-1343
MLIST:[linux-netdev] 20070316 [PATCH 2.6.21-rc3] IPV6: ipv6_fl_socklist is inadvertently shared.	CVE-2007-1592
MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets	CVE-2007-6282
MLIST:[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API.	CVE-2008-3792
MLIST:[linux-netdev] 20081106 UNIX sockets kernel panic	CVE-2008-5029
MLIST:[linux-netdev] 20081120 soft lockups/OOM after unix socket fixes	CVE-2008-5300
MLIST:[linux-netdev] 20081125 [PATCH] Fix soft lockups/OOM issues w/ unix garbage collector	CVE-2008-5300
MLIST:[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table	CVE-2008-5079
MLIST:[linux-netdev] 20090214 r8169: instant crash if receiving packet larger than MTU	CVE-2009-1389
MLIST:[linux-nfs] 20081022 kernel oops in nfs4_proc_lock	CVE-2009-3726
MLIST:[linux-nfs] 20090509 [NFS] [PATCH] nfs: Fix NFS v4 client handling of MAY_EXEC in nfs_permission.	CVE-2009-1630
MLIST:[linux-parisc] 20080729 [PATCH] fix unwind crash - was: Re: 2.6.26 kernel crash	CVE-2008-5395
MLIST:[linux-sctp] 20080827 [PATCH 0/2] sctp: additional overflow fixes	CVE-2008-4445
MLIST:[linux-sctp] 20080827 [PATCH 2/2] sctp: fix random memory dereference with SCTP_HMAC_IDENT option.	CVE-2008-4445
MLIST:[linux-security-module] 20050928 readv/writev syscalls are not checked by lsm	CVE-2006-1856
MLIST:[linux-security] 19961122 LSF Update#14: Vulnerability of the lpr program.	CVE-1999-0032
MLIST:[linux-sparc] 20060130 Attempts to set date with 'date -s' hang the machine	CVE-2006-0482
MLIST:[linux-sparc] 20060130 Re: Attempts to set date with 'date -s' hang the machine	CVE-2006-0482
MLIST:[linux-wireless] 20081029 [PATCH] libertas: fix buffer overrun	CVE-2008-5134
MLIST:[listar-dev] 20060115 [EDev] Re: Potential vulnerability -- who to contact?	CVE-2006-0332
MLIST:[listar-dev] 20060119 [EDev] Re: Potential vulnerability -- who to contact?	CVE-2006-0332
MLIST:[lkml-patch] 20060821 dvb-core: Proper handling ULE SNDU length of 0	CVE-2006-4623
MLIST:[lkml] 20070129 [PATCH] Don't allow the stack to grow into hugetlb reserved regions	CVE-2007-3739
MLIST:[lsh-bugs] 20050316 ANNOUNCE: LSH-2.0.1, fix for denial of service bug	CVE-2005-0814
MLIST:[lsh-bugs] SECURITY: lshd leaks fd:s to user shells	CVE-2006-0353
MLIST:[mad-dev] 20080112 Initite loop bug in libid3tag-0.15.0b	CVE-2008-2109
MLIST:[mapserver-users] 20090326 MapServer 5.2.2 and 4.10.4 released with security fixes	CVE-2009-0839 CVE-2009-0840 CVE-2009-0841 CVE-2009-0842 CVE-2009-0843 CVE-2009-1176 CVE-2009-1177
MLIST:[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update	CVE-2008-5249 CVE-2008-5250 CVE-2008-5252 CVE-2008-5687 CVE-2008-5688
MLIST:[mimedefang] 20070209 SECURITY: MIMEDefang 2.61 is Released	CVE-2007-0884
MLIST:[misc] 20071010 OpenBSD XSS ;)	CVE-2007-6700
MLIST:[mnemo] 20050422 Mnemo 1.1.4 (final)	CVE-2005-1320
MLIST:[mod_python] 20040122 [ANNOUNCE] Mod_python 2.7.10	CVE-2004-0096
MLIST:[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm	CVE-2009-0796
MLIST:[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status	CVE-2009-0796
MLIST:[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack	CVE-2006-5467
MLIST:[mono-devel-list] 20080726 [Mono-dev] [PATCH] HTML encode attributes that might need encoding	CVE-2008-3422
MLIST:[mpg123-devel] 20090405 mpg123 1.7.2 is out -- important security fix!	CVE-2009-1301
MLIST:[mute-net-discuss] 20050317 Houston, Houston we have problem!	CVE-2005-4726
MLIST:[mute-net-discuss] 20050318 Re: Houston, Houston we have problem!	CVE-2005-4726
MLIST:[mutt-dev] 20061004 security problem with temp files [was Re: mutt_adv_mktemp() ?]	CVE-2006-5297 CVE-2006-5298
MLIST:[myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp	CVE-2007-1588
MLIST:[nag] 20050422 Nag 1.1.3 (final)	CVE-2005-1322
MLIST:[nagios-devel] 20081107 Security fixes completed	CVE-2008-5027 CVE-2008-5028
MLIST:[nanog] 20090817 RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ?	CVE-2009-2055
MLIST:[neon] 20070107 invalid chars cause sigserv in neon	CVE-2007-0157
MLIST:[neon] 20080820 CVE-2008-3746: NULL pointer dereference in Digest domain support	CVE-2008-3746
MLIST:[neon] 20080820 neon: release 0.28.3 (SECURITY)	CVE-2008-3746
MLIST:[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat	CVE-2009-2473
MLIST:[neon] 20090818 CVE-2009-2474: fix handling of NUL in SSL cert subject names	CVE-2009-2474
MLIST:[neon] 20090818 neon: release 0.28.6 (SECURITY)	CVE-2009-2473 CVE-2009-2474
MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug	CVE-2005-2177
MLIST:[netbsd-announce] 20051031 Announcing update 2.0.3 - source only	CVE-2005-4691 CVE-2005-4779 CVE-2005-4783
MLIST:[netdev] 20050124 Re: skb_checksum_help	CVE-2005-0449
MLIST:[netdev] 20090128 [PATCH] drivers/net/skfp: if !capable(CAP_NET_ADMIN): inverted logic	CVE-2009-0675
MLIST:[netdev] 20090409 Oops in tun: bisected to Limit amount of queued packets per device	CVE-2009-1897
MLIST:[nfsv4] 20061116 Status of execute permissions in NFSv4 ACLs ?	CVE-2009-1630
MLIST:[nfsv4] 20061117 [Patch] Re: Status of execute permissions in NFSv4 ACLs ?	CVE-2009-1630
MLIST:[ngIRCd-ML] 20050126 ngIRCd 0.8.2	CVE-2005-0199
MLIST:[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security	CVE-2007-6062
MLIST:[ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3	CVE-2008-2370
MLIST:[onnv-notify] 20081011 6507173 Sockets should allocate minor numbers from higher order arena	CVE-2009-0480
MLIST:[onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh()	CVE-2009-0069
MLIST:[openbsd-cvs] 20070103 CVS: cvs.openbsd.org: www	CVE-2007-0085
MLIST:[openbsd-cvs] 20070103 Re: CVS: cvs.openbsd.org: src	CVE-2007-0085
MLIST:[openbsd-cvs] 20080708 CVS: cvs.openbsd.org: src	CVE-2008-3196
MLIST:[openbsd-cvs] 20080708 Re: CVS: cvs.openbsd.org: src	CVE-2008-3196
MLIST:[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff	CVE-2005-0109
MLIST:[openbsd-misc] 20070627 Intel Core 2	CVE-2006-7215
MLIST:[openbsd-ports] 20040717 UPDATE: cyrus-sasl-2.1.19	CVE-2005-0373
MLIST:[openbsd-security-announce] 20040513 procfs vulnerability	CVE-2004-0482
MLIST:[openbsd-security-announce] 20080111 errata 005 for OpenBSD 4.2: local users can provoke a kernel panic	CVE-2008-0384
MLIST:[openbsd-security-announce] 20091005 OpenBSD patch: XMM exceptions incorrectly handled in i386 kernel	CVE-2009-3572
MLIST:[openldap-announce] 20060801 OpenLDAP 2.3.25 available	CVE-2006-4600
MLIST:[openldap-announce] 20071026 OpenLDAP 2.3.39 available	CVE-2007-5707 CVE-2007-5708
MLIST:[openldap-bugs] 20070411 (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash	CVE-2007-6698
MLIST:[openldap-bugs] 20070411 Re: (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash	CVE-2007-6698
MLIST:[opensc-announce] 20080731 OpenSC Security Vulnerability and new Versions of OpenSC, OpenCT, LibP11, Pam_P11, Engine_PKCS11	CVE-2008-2235
MLIST:[opensc-announce] 20080827 opensc 0.11.6 with fixed security update	CVE-2008-3972
MLIST:[opensc-announce] 20090226 OpenSC Security Advisory	CVE-2009-0368
MLIST:[opensc-announce] 20090508 OpenSC 0.11.8 released with security update	CVE-2009-1603
MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released	CVE-2005-2797 CVE-2005-2798
MLIST:[openssh-unix-dev] 20040127 OpenSSH - Connection problem when LoginGraceTime exceeds time	CVE-2004-2069
MLIST:[openssh-unix-dev] 20040128 Re: OpenSSH - Connection problem when LoginGraceTime exceeds time	CVE-2004-2069
MLIST:[openssh-unix-dev] 20060927 Announce: OpenSSH 4.4 released	CVE-2006-4924 CVE-2006-5051 CVE-2006-5052
MLIST:[openssl-dev] 20080512 possible memory leak in zlib compression	CVE-2008-1678
MLIST:[openssl-dev] 20090516 [openssl.org #1930] [PATCH] DTLS record buffer limitation bug	CVE-2009-1377
MLIST:[openssl-dev] 20090516 [openssl.org #1931] [PATCH] DTLS fragment handling memory leak	CVE-2009-1378
MLIST:[openssl-dev] 20090518 Re: [openssl.org #1931] [PATCH] DTLS fragment handling memory leak	CVE-2009-1378
MLIST:[openvms-alerts] 20071003 VMS83A_LAN-V0200, ECO Kit Release	CVE-2007-5241 CVE-2007-5242
MLIST:[openvms-alerts] 20071003 VMS83I_LAN-V0600, ECO Kit Release	CVE-2007-5241 CVE-2007-5242
MLIST:[openwall-announce] 20070814 Linux 2.4.35-ow2	CVE-2007-3848
MLIST:[or-announce] 20050811 Tor security advisory: DH handshake flaw	CVE-2005-2643
MLIST:[or-announce] 20060829 Tor security advisory: clients will route traffic	CVE-2006-4508
MLIST:[or-announce] 20070525 Tor 0.1.2.14 is released	CVE-2007-3165
MLIST:[or-announce] 20070723 Tor 0.1.2.15 is released	CVE-2007-4096 CVE-2007-4097 CVE-2007-4098 CVE-2007-4099
MLIST:[or-announce] 20070802 Tor 0.1.2.16 is released	CVE-2007-4174
MLIST:[or-announce] 20070901 Tor security advisory: cross-protocol http form attack	CVE-2007-4174
MLIST:[or-announce] 20090122 Tor 0.2.0.33 is released	CVE-2009-0414
MLIST:[or-announce] 20090209 Tor 0.2.0.34 is released (security fixes)	CVE-2009-0936 CVE-2009-0937 CVE-2009-0938 CVE-2009-0939
MLIST:[or-announce] 20090625 Tor 0.2.0.35 is released	CVE-2009-2425 CVE-2009-2426
MLIST:[or-talk] 20070225 "Low-Resource Routing Attacks Against Anonymous Systems"	CVE-2007-1103
MLIST:[or-talk] 20070225 Re: "Low-Resource Routing Attacks Against Anonymous Systems"	CVE-2007-1103
MLIST:[or-talk] 20070225 Re: ISP controlling entry/exti ("Low-Resource Routing Attacks Against Anonymous Systems")	CVE-2007-1103
MLIST:[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18	CVE-2007-6722 CVE-2007-6723 CVE-2007-6724
MLIST:[or-talk] 20071031 Re: Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18	CVE-2007-6723
MLIST:[oracle-l] 20061201 Re: Oracle 9i on Windows 2003 -- Vulnerability Question	CVE-2007-2110
MLIST:[oss-security 20080701 Re: [oss-security] openldap DoS	CVE-2008-2952
MLIST:[oss-security] 20080311 CVE request: insecure X11 handling in ltsp	CVE-2008-1293
MLIST:[oss-security] 20080312 Re: CVE request: insecure X11 handling in ltsp	CVE-2008-1293
MLIST:[oss-security] 20080401 CVE id request: squid	CVE-2008-1612
MLIST:[oss-security] 20080406 Re: Security fixes in m4-1.4.11	CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080406 Security fixes in m4-1.4.11	CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080407 Re: Security fixes in m4-1.4.11	CVE-2008-1687
MLIST:[oss-security] 20080411 CVE request: openfire <3.5.0 Denial of Service	CVE-2008-1728
MLIST:[oss-security] 20080422 CVE Request: inspircd	CVE-2008-1925
MLIST:[oss-security] 20080425 CVE request: licq denial of service	CVE-2008-1996
MLIST:[oss-security] 20080502 CVE Request (PHP)	CVE-2007-4850 CVE-2008-0599 CVE-2008-0674 CVE-2008-2050 CVE-2008-2051
MLIST:[oss-security] 20080514 Re: CVE id request: uudeview	CVE-2008-2266
MLIST:[oss-security] 20080520 Re: CVE ID request: GNUTLS	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[oss-security] 20080521 New Xen ioemu: PVFB backend issue	CVE-2008-1952
MLIST:[oss-security] 20080521 Re: CVE request: mtr	CVE-2008-2357
MLIST:[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific)	CVE-2007-5962
MLIST:[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific)	CVE-2007-5962
MLIST:[oss-security] 20080529 CVE-2008-2363: pan - heap overflow	CVE-2008-2363
MLIST:[oss-security] 20080530 Re: CVE id request: uudeview	CVE-2008-2266
MLIST:[oss-security] 20080531 Re: CVE id request: ikiwiki	CVE-2008-0169
MLIST:[oss-security] 20080604 CVE id request: slash	CVE-2008-2231
MLIST:[oss-security] 20080604 Re: CVE id request: slash	CVE-2008-2231
MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing	CVE-2008-0960
MLIST:[oss-security] 20080610 Re: exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080610 exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080611 CVE id request: nasm off-by-one	CVE-2008-2719
MLIST:[oss-security] 20080611 Re: CVE id request: nasm off-by-one	CVE-2008-2719
MLIST:[oss-security] 20080611 Re: exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080613 CVE Id Request: fetchmail <= 6.3.8 DoS when logging long headers in -v -v mode	CVE-2008-2711
MLIST:[oss-security] 20080615 CVE id request: Clamav	CVE-2008-2713
MLIST:[oss-security] 20080616 CVE Id request: vim	CVE-2008-2712
MLIST:[oss-security] 20080617 Re: CVE id request: Clamav	CVE-2008-2713
MLIST:[oss-security] 20080619 CVE request: php 5.2.6 ext/imap buffer overflows	CVE-2008-2829
MLIST:[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant?	CVE-2008-2750
MLIST:[oss-security] 20080624 Re: CVE request: php 5.2.6 ext/imap buffer overflows	CVE-2008-2829
MLIST:[oss-security] 20080626 CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25	CVE-2008-2365
MLIST:[oss-security] 20080627 CVE Request (pidgin)	CVE-2008-2956 CVE-2008-2957
MLIST:[oss-security] 20080630 CVE id request mercurial:Insufficient input validation	CVE-2008-2942
MLIST:[oss-security] 20080630 CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080630 CVE-2008-2375 older vsftpd authentication memory leak	CVE-2008-2375
MLIST:[oss-security] 20080701 Re: CVE id request mercurial:Insufficient input validation	CVE-2008-2942
MLIST:[oss-security] 20080701 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080702 More ruby integer overflows (rb_ary_fill / Array#fill)	CVE-2008-2376
MLIST:[oss-security] 20080702 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080703 2.6.25.10 security fixes, please assign CVE id	CVE-2008-2812 CVE-2008-3077
MLIST:[oss-security] 20080703 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080703 Re: Re: CVE Request (pidgin)	CVE-2008-2927
MLIST:[oss-security] 20080704 Re: Re: CVE Request (pidgin)	CVE-2008-2927
MLIST:[oss-security] 20080707 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080708 CVE-2008-2931 kernel: missing check before setting mount propagation	CVE-2008-2931
MLIST:[oss-security] 20080708 Re: CVE id request: Clamav	CVE-2008-3215
MLIST:[oss-security] 20080708 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080708 Re: CVE request: moodle xss in < 1.8.5	CVE-2008-1502
MLIST:[oss-security] 20080708 Re: CVE-2008-2931 kernel: missing check before setting mount propagation	CVE-2008-2931
MLIST:[oss-security] 20080708 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080709 CVE id request: projectl	CVE-2008-3216
MLIST:[oss-security] 20080709 CVE request: PowerDNS recursor source port randomization	CVE-2008-3217
MLIST:[oss-security] 20080710 CVE id request: libavformat	CVE-2008-3162
MLIST:[oss-security] 20080710 CVE request: multiple drupal issues in < 6.3,5.8	CVE-2008-3218 CVE-2008-3219 CVE-2008-3220 CVE-2008-3221 CVE-2008-3222 CVE-2008-3223
MLIST:[oss-security] 20080710 Re: DNS vulnerability: other relevant software	CVE-2008-3217
MLIST:[oss-security] 20080710 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080712 CVE id request: op	CVE-2008-3229
MLIST:[oss-security] 20080712 CVE request: phpbb < 3.0.2	CVE-2008-3224
MLIST:[oss-security] 20080712 CVE requests: joomla <1.5.4	CVE-2008-3225 CVE-2008-3226 CVE-2008-3227 CVE-2008-3228
MLIST:[oss-security] 20080712 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080713 CVE requests: crashers by zzuf	CVE-2008-3230 CVE-2008-3231
MLIST:[oss-security] 20080713 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080713 Re: openldap DoS	CVE-2008-2952
MLIST:[oss-security] 20080714 CVE request: dotclear < 1.2.8	CVE-2008-3232
MLIST:[oss-security] 20080714 Re: CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25	CVE-2008-2365
MLIST:[oss-security] 20080715 CVE request: Wordpress XSS	CVE-2008-3233
MLIST:[oss-security] 20080715 CVE request: phpmyadmin < 2.11.7.1	CVE-2008-3197
MLIST:[oss-security] 20080715 Re: CVE id request: Clamav	CVE-2008-3215
MLIST:[oss-security] 20080715 Re: Re: More arbitrary code executions in Netrw	CVE-2008-3074 CVE-2008-3075 CVE-2008-3432
MLIST:[oss-security] 20080716 Re: CVE id request: libavformat	CVE-2008-3162
MLIST:[oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization	CVE-2008-3217
MLIST:[oss-security] 20080716 Re: CVE request: Wordpress XSS	CVE-2008-3233
MLIST:[oss-security] 20080716 Re: CVE request: phpmyadmin < 2.11.7.1	CVE-2008-2960
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw	CVE-2008-3432
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080801 Re: CVE request: phpwebgallery < 1.7.2	CVE-2008-3451
MLIST:[oss-security] 20080804 CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080805 Re: CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080807 Re: CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080808 CVE request: php-5.2.6 overflow issues	CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080808 Re: CVE request: php-5.2.6 overflow issues	CVE-2008-3659
MLIST:[oss-security] 20080813 Re: CVE request: php-5.2.6 overflow issues	CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080815 CVE request for neon	CVE-2008-3746
MLIST:[oss-security] 20080815 CVE-2008-3276 Linux kernel dccp_setsockopt_change() integer overflow	CVE-2008-3276
MLIST:[oss-security] 20080819 Re: swfdec 0.6.8 stable update	CVE-2008-3796
MLIST:[oss-security] 20080819 swfdec 0.6.8 stable update	CVE-2008-3796
MLIST:[oss-security] 20080819 wordpress 2.6.1	CVE-2008-3747
MLIST:[oss-security] 20080820 FW: CVE-2008-1668 - ftpd 2.4 - unauthorized root access - patch details	CVE-2008-1668
MLIST:[oss-security] 20080820 Re: CVE request for neon	CVE-2008-3746
MLIST:[oss-security] 20080820 Re: wordpress 2.6.1	CVE-2008-3747
MLIST:[oss-security] 20080824 Re: CVE id request: vlc	CVE-2008-3794
MLIST:[oss-security] 20080825 CVE Request (gpicview)	CVE-2008-3791
MLIST:[oss-security] 20080825 CVE Request (ruby)	CVE-2008-3790
MLIST:[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API	CVE-2008-3792
MLIST:[oss-security] 20080826 CVE Request (samba)	CVE-2008-3789
MLIST:[oss-security] 20080826 CVE-2008-3526 Linux kernel sctp_setsockopt_auth_key() integer overflow	CVE-2008-3526
MLIST:[oss-security] 20080826 Re: CVE Request (gpicview)	CVE-2008-3791
MLIST:[oss-security] 20080826 Re: CVE Request (ruby)	CVE-2008-3790
MLIST:[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API	CVE-2008-3792
MLIST:[oss-security] 20080827 CVE request: mono Sys.Web header injection	CVE-2008-3906
MLIST:[oss-security] 20080829 CVE-2008-3525 kernel: missing capability checks in sbni_ioctl()	CVE-2008-3525
MLIST:[oss-security] 20080831 Re: CVE Request (gpicview)	CVE-2008-3904
MLIST:[oss-security] 20080901 CVE id request: newsbeuter	CVE-2008-3907
MLIST:[oss-security] 20080903 CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-3905
MLIST:[oss-security] 20080903 Re: CVE Request (gpicview)	CVE-2008-3904
MLIST:[oss-security] 20080903 django CSRF vuln	CVE-2008-3909
MLIST:[oss-security] 20080903 request for CVE: clamav 0.94 release	CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080904 CVE id request: dns2tcp	CVE-2008-3910
MLIST:[oss-security] 20080904 CVE request: kernel: dio: zero struct dio with kzalloc instead of manually	CVE-2007-6716
MLIST:[oss-security] 20080904 CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[oss-security] 20080904 CVE request: kernel: sunrpc: fix possible overrun on read of /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[oss-security] 20080904 Re: CVE Request (ruby -- DNS spoofing vulnerability	CVE-2008-3905
MLIST:[oss-security] 20080904 Re: CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[oss-security] 20080904 Re: request for CVE: clamav 0.94 release	CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080906 CVE id requests: gmanedit	CVE-2008-3971
MLIST:[oss-security] 20080906 CVE request: pam_mount < 0.47 missing security checks	CVE-2008-3970
MLIST:[oss-security] 20080908 Re: CVE request for bitlbee	CVE-2008-3969
MLIST:[oss-security] 20080909 CVE request (libpng)	CVE-2008-3964
MLIST:[oss-security] 20080909 CVE request: MySQL empty bit-string literal server crash	CVE-2008-3963
MLIST:[oss-security] 20080909 CVE request: mybb < 1.4.1	CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE id requests: gmanedit	CVE-2008-3971
MLIST:[oss-security] 20080909 Re: CVE request (libpng)	CVE-2008-3964
MLIST:[oss-security] 20080909 Re: CVE request for bitlbee	CVE-2008-3969
MLIST:[oss-security] 20080909 Re: CVE request: MySQL empty bit-string literal server crash	CVE-2008-3963
MLIST:[oss-security] 20080909 Re: CVE request: MySQL incomplete fix for CVE-2008-2079	CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080909 Re: CVE request: mybb < 1.4.1	CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE request: pam_mount < 0.47 missing security checks	CVE-2008-3970
MLIST:[oss-security] 20080909 Re: cve request: punbb < 1.2.20 xss	CVE-2008-3968
MLIST:[oss-security] 20080909 Re: opensc 0.11.6 with fixed security update	CVE-2008-3972
MLIST:[oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080909 cve request: punbb < 1.2.20 xss	CVE-2008-3968
MLIST:[oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080910 [oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS)	CVE-2008-3823 CVE-2008-3824
MLIST:[oss-security] 20080911 CVE request for Joomla multiple vuln.	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: joomla < 1.5.7	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: wordpress < 2.6.2	CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080911 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080911 Re: [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080911 [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080913 CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection	CVE-2008-4094
MLIST:[oss-security] 20080915 CVE Request (python)	CVE-2008-4108
MLIST:[oss-security] 20080915 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080915 Re: CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection	CVE-2008-4094
MLIST:[oss-security] 20080915 Re: [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080915 Re: phpMyAdmin code execution (CVE request)	CVE-2008-4096
MLIST:[oss-security] 20080915 phpMyAdmin code execution (CVE request)	CVE-2008-4096
MLIST:[oss-security] 20080916 CVE request: kernel: splice: fix bad unlock_page() in error case	CVE-2008-4302
MLIST:[oss-security] 20080916 Re: CVE Request (python)	CVE-2008-4108
MLIST:[oss-security] 20080916 Re: CVE request: MySQL incomplete fix for CVE-2008-2079	CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080916 Re: CVE request: joomla < 1.5.7	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080916 Re: CVE request: wordpress < 2.6.2	CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080918 CVE Request (mercurial)	CVE-2008-4297
MLIST:[oss-security] 20080918 CVE Request (openswan, emacspeak, cman)	CVE-2008-4192
MLIST:[oss-security] 20080918 CVE-2008-3528 Linux kernel ext[234] directory corruption DoS	CVE-2008-3528
MLIST:[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities	CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080919 viewvc security flaw?	CVE-2008-4325
MLIST:[oss-security] 20080920 Re: viewvc security flaw?	CVE-2008-4325
MLIST:[oss-security] 20080923 CVE req: phpmyadmin < 2.11.9.2 xss	CVE-2008-4326
MLIST:[oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman)	CVE-2008-4192
MLIST:[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities	CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080924 CVE request: kernel: open() call allows setgid bit when user is not in new file's group	CVE-2008-4210
MLIST:[oss-security] 20080924 Re: CVE id request: fraud2	CVE-2008-4201
MLIST:[oss-security] 20080924 Re: CVE request: kernel: open() call allows setgid bit when user is not in new file's group	CVE-2008-4210
MLIST:[oss-security] 20080925 CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080926 CVE Request (lighttpd)	CVE-2008-4298
MLIST:[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-3792 CVE-2008-4113 CVE-2008-4445
MLIST:[oss-security] 20080927 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080929 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080930 CVE Request (xen)	CVE-2008-4405
MLIST:[oss-security] 20080930 Re: CVE request: lighttpd issues	CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20080930 Re: Re: CVE request: lighttpd issues	CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20081001 CVE id request: sabre	CVE-2008-4406
MLIST:[oss-security] 20081002 CVE request: XSS in mediawiki 1.13.1 and 1.12.0	CVE-2008-4408
MLIST:[oss-security] 20081002 CVE-2008-3832 kernel: null pointer dereference in utrace_control	CVE-2008-3832
MLIST:[oss-security] 20081002 libxml2 "ampproblem" DoS	CVE-2008-4409
MLIST:[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI	CVE-2008-4410
MLIST:[oss-security] 20081003 CVE-2008-3833 kernel: remove SUID when splicing into an inode	CVE-2008-3833
MLIST:[oss-security] 20081003 Re: regarding CVE-2008-4382 & CVE-2008-4381	CVE-2008-4381
MLIST:[oss-security] 20081003 regarding CVE-2008-4382 & CVE-2008-4381	CVE-2008-4381
MLIST:[oss-security] 20081004 Re: CVE Request (xen)	CVE-2008-4405
MLIST:[oss-security] 20081006 CVE request - (vim : netrw plugin - ftp user credentials disclosure)	CVE-2008-4677
MLIST:[oss-security] 20081006 CVE request: kernel: sctp: Fix kernel panic while process protocol violation parameter	CVE-2008-4618
MLIST:[oss-security] 20081007 CVE request: crashers / potential security risks in mplayer	CVE-2007-6718 CVE-2008-4610
MLIST:[oss-security] 20081008 CVE request: kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH	CVE-2008-4576
MLIST:[oss-security] 20081009 lynx lynxcgi handler flaw	CVE-2008-4690
MLIST:[oss-security] 20081013 CVE id request: qemu	CVE-2008-4553
MLIST:[oss-security] 20081013 CVE request: kernel: don't allow splice() to files opened with O_APPEND	CVE-2008-4554
MLIST:[oss-security] 20081013 Re: CVE Request	CVE-2008-4579 CVE-2008-4580
MLIST:[oss-security] 20081014 Re: CVE id request: qemu	CVE-2008-4553
MLIST:[oss-security] 20081014 Re: CVE request: kernel: don't allow splice() to files opened with O_APPEND	CVE-2008-4554
MLIST:[oss-security] 20081015 CVE request: jhead	CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Re: CVE request: jhead	CVE-2008-4575 CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075	CVE-2008-2712 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20081016 CVE request - Vim netrw.plugin	CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081016 Re: CVE Request	CVE-2008-4580
MLIST:[oss-security] 20081016 Re: CVE request: jhead	CVE-2008-4639 CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081019 CVE id request: vlc	CVE-2008-4654 CVE-2008-4686
MLIST:[oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE	CVE-2008-4687
MLIST:[oss-security] 20081020 CVE request (vim)	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081020 Re: CVE request: mantisbt < 1.1.4: RCE	CVE-2008-4688 CVE-2008-4689
MLIST:[oss-security] 20081021 CVE Request: Opera 9.60 with security fixes	CVE-2008-4694 CVE-2008-4695
MLIST:[oss-security] 20081021 CVE req: drupal < 5.11/6.5	CVE-2008-4789 CVE-2008-4790 CVE-2008-4791 CVE-2008-4792 CVE-2008-4793
MLIST:[oss-security] 20081021 Re: CVE Request: Opera 9.60 with security fixes	CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 CVE Request (netpbm)	CVE-2008-4799
MLIST:[oss-security] 20081022 Re: CVE Request: Opera 9.60 with security fixes	CVE-2008-4694 CVE-2008-4695 CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 Re: CVE id request: vlc	CVE-2008-4686
MLIST:[oss-security] 20081023 CVE request for ecryptfs	CVE-2008-5188
MLIST:[oss-security] 20081023 Re: CVE Request (netpbm)	CVE-2008-4799
MLIST:[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw	CVE-2006-7234
MLIST:[oss-security] 20081025 Regarding SA32329 (Smarty "_expand_quoted_text()" Security Bypass)	CVE-2008-4810 CVE-2008-4811
MLIST:[oss-security] 20081027 CVE id request: blender	CVE-2008-4863
MLIST:[oss-security] 20081027 CVE request -- Python imageop#3	CVE-2008-4864
MLIST:[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081027 XSS in HTML Tidy plugin used in WYSIWYG HTML editors	CVE-2008-4761
MLIST:[oss-security] 20081028 CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081029 CVE Request (dovecot)	CVE-2008-4870
MLIST:[oss-security] 20081029 CVE Request - Python imageop	CVE-2008-4864
MLIST:[oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities	CVE-2008-4866 CVE-2008-4867 CVE-2008-4868 CVE-2008-4869
MLIST:[oss-security] 20081029 Re: CVE request for ecryptfs	CVE-2008-5188
MLIST:[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081029 Re: CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire	CVE-2003-0308 CVE-2008-3883 CVE-2008-3927 CVE-2008-3928 CVE-2008-3929 CVE-2008-3930 CVE-2008-3931 CVE-2008-4085 CVE-2008-4190 CVE-2008-4191 CVE-2008-4192 CVE-2008-4440 CVE-2008-4474 CVE-2008-4475 CVE-2008-4476 CVE-2008-4477 CVE-2008-4553 CVE-2008-4935 CVE-2008-4936 CVE-2008-4937 CVE-2008-4938 CVE-2008-4939 CVE-2008-4940 CVE-2008-4941 CVE-2008-4942 CVE-2008-4943 CVE-2008-4944 CVE-2008-4945 CVE-2008-4946 CVE-2008-4947 CVE-2008-4948 CVE-2008-4949 CVE-2008-4950 CVE-2008-4951 CVE-2008-4952 CVE-2008-4953 CVE-2008-4954 CVE-2008-4955 CVE-2008-4956 CVE-2008-4957 CVE-2008-4958 CVE-2008-4959 CVE-2008-4960 CVE-2008-4964 CVE-2008-4965 CVE-2008-4966 CVE-2008-4967 CVE-2008-4968 CVE-2008-4969 CVE-2008-4970 CVE-2008-4971 CVE-2008-4972 CVE-2008-4973 CVE-2008-4974 CVE-2008-4975 CVE-2008-4976 CVE-2008-4977 CVE-2008-4978 CVE-2008-4979 CVE-2008-4980 CVE-2008-4981 CVE-2008-4982 CVE-2008-4983 CVE-2008-4984 CVE-2008-4985 CVE-2008-4986 CVE-2008-4987 CVE-2008-4988 CVE-2008-4993 CVE-2008-4994 CVE-2008-4995 CVE-2008-4996 CVE-2008-4997 CVE-2008-4998 CVE-2008-5007 CVE-2008-5034
MLIST:[oss-security] 20081031 New net-snmp DoS	CVE-2008-4309
MLIST:[oss-security] 20081031 Re: CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties)	CVE-2008-4928 CVE-2008-4929 CVE-2008-4930
MLIST:[oss-security] 20081101 CVE-2008-4796: snoopy triage	CVE-2008-4796
MLIST:[oss-security] 20081102 CVE id request: htop	CVE-2008-5076
MLIST:[oss-security] 20081103 CVE Request (libsamplerate)	CVE-2008-5008
MLIST:[oss-security] 20081103 CVE request - uw-imap	CVE-2008-5005
MLIST:[oss-security] 20081103 CVE requests: kernel: hfsplus-related bugs	CVE-2008-4933 CVE-2008-4934
MLIST:[oss-security] 20081103 Re: CVE request - uw-imap	CVE-2008-5005 CVE-2008-5006
MLIST:[oss-security] 20081105 CVE Request - Python string expandtabs	CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 CVE id request: vlc	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081105 CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081105 Re: CVE Request - Python string expandtabs	CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 VideoLAN security advisory 0810	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081106 CVE request: Nagios (two issues)	CVE-2008-5027 CVE-2008-5028
MLIST:[oss-security] 20081106 CVE request: kernel: Unix sockets kernel panic	CVE-2008-5029
MLIST:[oss-security] 20081107 Re: CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081110 GeSHi: Clarification about the recent security (non-)issues (SA32559)	CVE-2008-5186
MLIST:[oss-security] 20081110 Re: CVE id request: vlc	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081110 Re: CVE requests: kernel: hfsplus-related bugs	CVE-2008-5025
MLIST:[oss-security] 20081111 CVE request: kernel: libertas: fix buffer overrun	CVE-2008-5134
MLIST:[oss-security] 20081111 Re: CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081111 Re: CVE requests: kernel: hfsplus-related bugs	CVE-2008-5025
MLIST:[oss-security] 20081112 CVE Request - Zope 2 - PythonScripts local DoS	CVE-2008-5102
MLIST:[oss-security] 20081112 CVE Request -- OptiPNG	CVE-2008-5101
MLIST:[oss-security] 20081113 CVE request: wordpress can be subject of delayed attacks via cookies	CVE-2008-5113
MLIST:[oss-security] 20081114 Re: CVE id request: htop	CVE-2008-5076
MLIST:[oss-security] 20081117 CVE Request (syslog-ng)	CVE-2008-5110
MLIST:[oss-security] 20081119 CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183 CVE-2008-5184
MLIST:[oss-security] 20081119 Re: CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183
MLIST:[oss-security] 20081120 CVE Request: imlib2	CVE-2008-5187
MLIST:[oss-security] 20081120 CVE id request: another geshi issue (was: [oss-security] GeSHi: Clarification about the recent security (non-)issues (SA32559))	CVE-2008-5185
MLIST:[oss-security] 20081120 CVE request: no-ip DUC buffer overflow	CVE-2008-5297
MLIST:[oss-security] 20081120 Re: CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183
MLIST:[oss-security] 20081124 CVE Request -- wireshark	CVE-2008-5285
MLIST:[oss-security] 20081127 Re: CVE request: jhead	CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks	CVE-2008-5312 CVE-2008-5313
MLIST:[oss-security] 20081128 CVE request: lcms (old issues)	CVE-2008-5316 CVE-2008-5317
MLIST:[oss-security] 20081128 Re: [oss-security] CVE Request - cups, dovecot-managesieve, perl, wireshark	CVE-2008-5302 CVE-2008-5303
MLIST:[oss-security] 20081201 (sort of urgent) CVE Request -- cups (repost)	CVE-2008-5286
MLIST:[oss-security] 20081201 CVE request: clamav 0.94.2	CVE-2008-5314
MLIST:[oss-security] 20081203 CVE Request (zaptel)	CVE-2008-5396
MLIST:[oss-security] 20081204 CVE for SE-2008-06 in PHP 5.2.7 (ZipArchive)	CVE-2008-5658
MLIST:[oss-security] 20081204 ruby CVE-2008-4310 (Red Hat specific)	CVE-2008-4310
MLIST:[oss-security] 20081206 CVE request: weak PRNG in GNU Classpath	CVE-2008-5659
MLIST:[oss-security] 20081209 CVE request: Four issues in PunBB	CVE-2008-5433 CVE-2008-5434 CVE-2008-5435
MLIST:[oss-security] 20081209 CVE request: kernel: MIPS: Fix potential DOS by untrusted user app	CVE-2008-5701
MLIST:[oss-security] 20081209 CVE request: kernel: enforce a minimum SG_IO timeout	CVE-2008-5700
MLIST:[oss-security] 20081209 CVE request: moodle (XSS)	CVE-2008-5432
MLIST:[oss-security] 20081210 CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081212 CVE Request - roundcubemail	CVE-2008-5619
MLIST:[oss-security] 20081214 Avahi daemon DoS (CVE-2008-5081)	CVE-2008-5081
MLIST:[oss-security] 20081216 CVE id request: gpsdrive	CVE-2008-5703 CVE-2008-5704
MLIST:[oss-security] 20081216 CVE id request: verlihub	CVE-2008-5705 CVE-2008-5706
MLIST:[oss-security] 20081216 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081217 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396	CVE-2008-5744
MLIST:[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete)	CVE-2008-5716
MLIST:[oss-security] 20081219 CVE request - pdfjam	CVE-2008-5743
MLIST:[oss-security] 20081223 CVE request: kernel: soft lockup occurs when network load is very high	CVE-2008-5713
MLIST:[oss-security] 20081228 Re: CVE request - pdfjam	CVE-2008-5843
MLIST:[oss-security] 20081230 CVE id request: audiofile	CVE-2008-5824
MLIST:[oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID	CVE-2009-0065
MLIST:[oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included)	CVE-2009-0068
MLIST:[oss-security] 20090108 CVE request: ktorrent	CVE-2008-5905 CVE-2008-5906
MLIST:[oss-security] 20090109 libpng non issue	CVE-2008-5907
MLIST:[oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto	CVE-2009-0124 CVE-2009-0125 CVE-2009-0126 CVE-2009-0127 CVE-2009-0128 CVE-2009-0129 CVE-2009-0130
MLIST:[oss-security] 20090112 CVE request: xrdp	CVE-2008-5902 CVE-2008-5903 CVE-2008-5904
MLIST:[oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages	CVE-2009-0024
MLIST:[oss-security] 20090113 CVE Request -- libmikmod	CVE-2007-6720 CVE-2009-0179
MLIST:[oss-security] 20090113 CVE-2008-4307 kernel: local denial of service in locks_remove_flock	CVE-2008-4307
MLIST:[oss-security] 20090114 CVE Request -- amarok	CVE-2009-0135 CVE-2009-0136
MLIST:[oss-security] 20090114 update on CVE-2008-5718	CVE-2008-5718
MLIST:[oss-security] 20090115 CVE request -- git	CVE-2008-5916
MLIST:[oss-security] 20090118 CVE request: WebSVN	CVE-2009-0240
MLIST:[oss-security] 20090119 CVE-2009-0031 kernel: local denial of service in keyctl_join_session_keyring	CVE-2009-0031
MLIST:[oss-security] 20090120 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517 CVE-2008-5916
MLIST:[oss-security] 20090121 CVE Request -- openoffice.org (CVE-2008-4841)	CVE-2009-0259
MLIST:[oss-security] 20090121 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090121 mod-auth-mysql: SQL injection	CVE-2008-2384
MLIST:[oss-security] 20090123 Re: CVE id request: typo3 SA-2009-001	CVE-2009-0258
MLIST:[oss-security] 20090123 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983 CVE-2008-5984 CVE-2008-5985 CVE-2008-5986 CVE-2008-5987 CVE-2009-0314 CVE-2009-0315 CVE-2009-0316 CVE-2009-0317 CVE-2009-0318
MLIST:[oss-security] 20090127 CVE Request: MoinMoin	CVE-2009-0312
MLIST:[oss-security] 20090128 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983
MLIST:[oss-security] 20090129 CVE Request (trickle)	CVE-2009-0415
MLIST:[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version)	CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 CVE-2009-0398
MLIST:[oss-security] 20090130 CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090130 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983
MLIST:[oss-security] 20090203 CVE Request: sblim-sfcb genSslCert.sh temp race	CVE-2009-0416
MLIST:[oss-security] 20090203 Re: CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090204 CVS request - Moodle	CVE-2009-0499 CVE-2009-0500 CVE-2009-0501 CVE-2009-0502
MLIST:[oss-security] 20090206 CVE Request - Wicd <= 1.5.8	CVE-2009-0489
MLIST:[oss-security] 20090206 CVE request: phpbb < 3.0.4	CVE-2008-6506 CVE-2008-6507
MLIST:[oss-security] 20090206 Re: CVE request: jhead	CVE-2008-4639
MLIST:[oss-security] 20090207 CVE Request: pycrypto	CVE-2009-0544
MLIST:[oss-security] 20090208 CVE-2008-6049 is bogus	CVE-2008-6049
MLIST:[oss-security] 20090210 CVE Request -- evolution	CVE-2009-0547
MLIST:[oss-security] 20090210 CVE request: typo3 xss (typo3-sa-2009-002)	CVE-2009-0815 CVE-2009-0816
MLIST:[oss-security] 20090210 libvirt_proxy heads up	CVE-2009-0036
MLIST:[oss-security] 20090211 CVE request for proftpd	CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090211 Re: CVE request for proftpd	CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure)	CVE-2008-6123
MLIST:[oss-security] 20090212 CVE-2008-5621 is a duplicate (was: Re: CVE request: phpMyAdmin < 3.1.1.0 (SQL injection through XSRF on several pages ))	CVE-2008-5621
MLIST:[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure)	CVE-2008-6123
MLIST:[oss-security] 20090212 Re: CVE Request: pycrypto	CVE-2009-0544
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel	CVE-2009-1046
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel issue	CVE-2009-1046
MLIST:[oss-security] 20090212 http://www.securityfocus.com/bid/33672/info kernel issue	CVE-2009-1046
MLIST:[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities	CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090219 CVE request for yaws	CVE-2009-0751
MLIST:[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities	CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090220 CVE request: kernel: skfp_ioctl inverted logic flaw	CVE-2009-0675
MLIST:[oss-security] 20090223 CVE request: mldonkey arbitrary file download vulnerability	CVE-2009-0753
MLIST:[oss-security] 20090224 CVE request: optipng security release	CVE-2009-0749
MLIST:[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090225 CVE request: Psi <0.12.1 DoS	CVE-2008-6393
MLIST:[oss-security] 20090225 Re: CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090225 Re: CVE request: optipng security release	CVE-2009-0749
MLIST:[oss-security] 20090226 OpenSC Security Advisory	CVE-2009-0368
MLIST:[oss-security] 20090301 CVE id request: znc	CVE-2009-0759
MLIST:[oss-security] 20090302 CVE Request: mpfr (Buffer Overflow)	CVE-2009-0757
MLIST:[oss-security] 20090302 CVE id request: avahi	CVE-2009-0758
MLIST:[oss-security] 20090302 CVE id request: dkim-milter	CVE-2009-0770
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole	CVE-2009-0835
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole	CVE-2009-0834
MLIST:[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090305 CVE Request -- pam	CVE-2009-0887
MLIST:[oss-security] 20090306 CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[oss-security] 20090307 CVE Request: Opera <9.64: Execution of arbitrary code	CVE-2009-0914
MLIST:[oss-security] 20090311 CVE request -- postgresql	CVE-2009-0922
MLIST:[oss-security] 20090311 CVE-2009-0778 kernel: rt_cache leak	CVE-2009-0778
MLIST:[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows	CVE-2008-4316 CVE-2009-0585 CVE-2009-0586 CVE-2009-0587
MLIST:[oss-security] 20090316 CVE request: XSS in MUC logs of ejabberd	CVE-2009-0934
MLIST:[oss-security] 20090316 CVE-2009-0876 (VirtualBox) references	CVE-2009-0876
MLIST:[oss-security] 20090317 CVE request -- firefox, vlc, WeeChat	CVE-2009-1045
MLIST:[oss-security] 20090317 Re: CVE request -- firefox, vlc, WeeChat	CVE-2009-0661
MLIST:[oss-security] 20090317 Re: CVE-2009-0876 (VirtualBox) references	CVE-2009-0876
MLIST:[oss-security] 20090317 Re: [oCERT-2008-015] glib and glib-predecessor heap overflows	CVE-2008-4316
MLIST:[oss-security] 20090318 Re: CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090319 Re: CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090323 CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap	CVE-2009-1073
MLIST:[oss-security] 20090323 CVE request: API key disclosure in piwik	CVE-2009-1085
MLIST:[oss-security] 20090323 CVE request: kernel: nfsd did not drop CAP_MKNOD for non-root	CVE-2009-1072
MLIST:[oss-security] 20090324 CVE id request: ldns	CVE-2009-1086
MLIST:[oss-security] 20090324 Re: CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap	CVE-2009-1073
MLIST:[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen	CVE-2009-1214 CVE-2009-1215
MLIST:[oss-security] 20090330 [Fwd: Cross-Site Scripting in Banshee DAAP Extension]	CVE-2009-1175
MLIST:[oss-security] 20090401 CVE id rquest: xfig insecure tmp files	CVE-2009-1962
MLIST:[oss-security] 20090401 CVE request -- bibtex, pam_ssh	CVE-2009-1284
MLIST:[oss-security] 20090401 CVE request -- ghostscript	CVE-2007-6725 CVE-2008-6679
MLIST:[oss-security] 20090401 CVE request: PHP 5.2.9	CVE-2009-1271 CVE-2009-1272
MLIST:[oss-security] 20090401 CVE request: kernel: KVM: VMX: Dont allow uninhibited access to EFER on i386	CVE-2009-1242
MLIST:[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure	CVE-2009-1243
MLIST:[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1439
MLIST:[oss-security] 20090406 CVE request: kernel: NFS: Fix an Oops in encode_lookup()	CVE-2009-1336
MLIST:[oss-security] 20090407 CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[oss-security] 20090407 Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive	CVE-2008-6680 CVE-2009-1241 CVE-2009-1270
MLIST:[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1439
MLIST:[oss-security] 20090408 CVE request: apt	CVE-2009-1300
MLIST:[oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability	CVE-2008-5519
MLIST:[oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size	CVE-2009-1265
MLIST:[oss-security] 20090409 Re: CVE request: PHP 5.2.9	CVE-2009-1272
MLIST:[oss-security] 20090413 CVE request: silverstripe - two sql injections	CVE-2008-6753
MLIST:[oss-security] 20090415 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090415 Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090415 Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090416 CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090416 CVE-2009-1189: invalid fix for CVE-2008-3834 (dbus)	CVE-2009-1189
MLIST:[oss-security] 20090417 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090417 Re: CVE request: kernel: NFS: Fix an Oops in encode_lookup()	CVE-2009-1336
MLIST:[oss-security] 20090417 Re: CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[oss-security] 20090421 CVE Request -- libmodplug	CVE-2009-1438
MLIST:[oss-security] 20090421 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090422 CVE id request: amule	CVE-2009-1440
MLIST:[oss-security] 20090422 CVE-2009-1192 kernel: agp: zero pages before sending to userspace	CVE-2009-1192
MLIST:[oss-security] 20090424 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090428 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090429 Re: CVE Request -- libmodplug	CVE-2009-1513
MLIST:[oss-security] 20090429 Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090429 ipsec-tools 0.7.2	CVE-2009-1574 CVE-2009-1632
MLIST:[oss-security] 20090501 CVE request (sort of): Quagga BGP crasher	CVE-2009-1572
MLIST:[oss-security] 20090501 Re: CVE request (sort of): Quagga BGP crasher	CVE-2009-1572
MLIST:[oss-security] 20090504 CVE request: kernel: ptrace_attach: fix the usage of ->cred_exec_mutex	CVE-2009-1527
MLIST:[oss-security] 20090504 CVE-2009-1184 selinux: skipped node/port send checks in the compat_net=1 case	CVE-2009-1184
MLIST:[oss-security] 20090504 Re: ipsec-tools 0.7.2	CVE-2009-1574
MLIST:[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)	CVE-2009-1573
MLIST:[oss-security] 20090505 Old cscope buffer overflow	CVE-2009-1577
MLIST:[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)	CVE-2009-1573
MLIST:[oss-security] 20090506 CVE id request: coccinelle	CVE-2009-1753
MLIST:[oss-security] 20090506 Re: Old cscope buffer overflow	CVE-2009-0148 CVE-2009-1577
MLIST:[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations	CVE-2009-1194
MLIST:[oss-security] 20090508 OpenSC 0.11.8 released with security update	CVE-2009-1603
MLIST:[oss-security] 20090511 [oCERT-2009-004] AjaxTerm session id collision	CVE-2009-1629
MLIST:[oss-security] 20090512 CVE Request (evolution)	CVE-2009-1631
MLIST:[oss-security] 20090512 Re: ipsec-tools 0.7.2	CVE-2009-1632
MLIST:[oss-security] 20090513 CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission	CVE-2009-1630
MLIST:[oss-security] 20090514 CVE Request: XEN local denial of service	CVE-2009-1758
MLIST:[oss-security] 20090514 Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090514 Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090515 Re: Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090518 CVE id request: slim	CVE-2009-1756
MLIST:[oss-security] 20090518 Re: Two OpenSSL DTLS remote DoS	CVE-2009-1379
MLIST:[oss-security] 20090518 Two OpenSSL DTLS remote DoS	CVE-2009-1377 CVE-2009-1378
MLIST:[oss-security] 20090519 CVE id request: nsd	CVE-2009-1755
MLIST:[oss-security] 20090520 CVE request: ctorrent	CVE-2009-1759
MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF	CVE-2009-1757
MLIST:[oss-security] 20090522 [oCERT-2009-006] Android improper package verification when using shared uids	CVE-2009-1754
MLIST:[oss-security] 20090527 CVE assignment notification (pam_krb5 CVE-2009-1384)	CVE-2009-1384
MLIST:[oss-security] 20090529 CVE Request (irssi)	CVE-2009-1959
MLIST:[oss-security] 20090529 CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090530 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090602 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090602 Re: Two OpenSSL DTLS remote DoS	CVE-2009-1386 CVE-2009-1387
MLIST:[oss-security] 20090603 CVE request: "billion laughs" attack against Apache APR	CVE-2009-1955
MLIST:[oss-security] 20090603 CVE request: kernel: sparc64: Fix crash with /proc/iomem	CVE-2009-1914
MLIST:[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service	CVE-2009-1385
MLIST:[oss-security] 20090603 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090605 CVE Request (apr-util)	CVE-2009-1956
MLIST:[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage()	CVE-2009-1882
MLIST:[oss-security] 20090610 CVE-2009-1389 kernel: r8169: fix crash when large packets are received	CVE-2009-1389
MLIST:[oss-security] 20090610 Mutt 1.5.19 SSL chain verification flaw	CVE-2009-1390
MLIST:[oss-security] 20090612 Git daemon infinite loop	CVE-2009-2108
MLIST:[oss-security] 20090621 libtiff buffer underflow in LZWDecodeCompat	CVE-2009-2285
MLIST:[oss-security] 20090623 Re: libtiff buffer underflow in LZWDecodeCompat	CVE-2009-2285
MLIST:[oss-security] 20090629 CVE Request -- libtiff [was: Re: libtiff buffer underflow in LZWDecodeCompat]	CVE-2009-2285
MLIST:[oss-security] 20090629 CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090629 Re: CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090630 CVE Request: kernel: kvm: failure to validate cr3 after KVM_SET_SREGS	CVE-2009-2287
MLIST:[oss-security] 20090701 Re: incorrect upstream fix for CVE-2009-0840 (mapserver)	CVE-2009-2281
MLIST:[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock	CVE-2009-1388
MLIST:[oss-security] 20090703 Re: CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090716 [oCERT-2009-011] Android improper camera and audio permission verification	CVE-2009-2348
MLIST:[oss-security] 20090717 Linux 2.6.30+/SELinux/RHEL5 test kernel 0day, exploiting the unexploitable	CVE-2009-1897
MLIST:[oss-security] 20090720 squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090721 CVE Request -- WordPress	CVE-2009-2851
MLIST:[oss-security] 20090721 CVE Request -- znc	CVE-2009-2658
MLIST:[oss-security] 20090722 Re: CVE request: Wireshark <1.2.1 Multiple DoS	CVE-2009-2560
MLIST:[oss-security] 20090724 md raid null ptr dereference (when sysfs is writable)	CVE-2009-2849
MLIST:[oss-security] 20090724 nilfs-utils privilege escalation	CVE-2009-2657
MLIST:[oss-security] 20090725 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090725 camlimages: Integer overflows in GIF and JPEG readers	CVE-2009-2660
MLIST:[oss-security] 20090726 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090726 Re: md raid null ptr dereference (when sysfs is writable)	CVE-2009-2849
MLIST:[oss-security] 20090727 CVE id request: strongswan	CVE-2009-2661
MLIST:[oss-security] 20090729 CVE Request (django)	CVE-2009-2659
MLIST:[oss-security] 20090803 Re: squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090804 CVE request - kernel: execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[oss-security] 20090804 CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090804 CVE request: Wordpress	CVE-2009-2853 CVE-2009-2854
MLIST:[oss-security] 20090804 Re: squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090805 Re: CVE request - kernel: execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[oss-security] 20090805 Re: CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate	CVE-2009-2666
MLIST:[oss-security] 20090806 CVE request: kernel: clock_nanosleep() with CLOCK_MONOTONIC_RAW NULL pointer dereference	CVE-2009-2767
MLIST:[oss-security] 20090810 CVE request: kernel: parisc: isa-eeprom missing lower bound check	CVE-2009-2846
MLIST:[oss-security] 20090811 CVE-2009-2691 kernel: /proc/$pid/maps visible during initial setuid ELF loading	CVE-2009-2691
MLIST:[oss-security] 20090813 CVE request: kernel: flat: fix uninitialized ptr with shared libs	CVE-2009-2768
MLIST:[oss-security] 20090814 CVE request: Common Data Format (CDF) library multiple heap-based buffer overflows	CVE-2009-2850
MLIST:[oss-security] 20090814 CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc	CVE-2009-2692
MLIST:[oss-security] 20090814 GnuTLS CVE-2009-2730 Patches (Was Re: GnuTLS 2.8.2)	CVE-2009-2730
MLIST:[oss-security] 20090815 mailfilter 0.8.2 fixes CVE-2007-1558 (APOP)	CVE-2007-1558
MLIST:[oss-security] 20090817 CVE request: kernel: cfg80211: missing NULL pointer checks	CVE-2009-2844
MLIST:[oss-security] 20090817 Re: CVE request: kernel: cfg80211: missing NULL pointer checks	CVE-2009-2844
MLIST:[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)	CVE-2009-2695
MLIST:[oss-security] 20090818 Re: CVE request: kernel: parisc: isa-eeprom missing lower bound check	CVE-2009-2846
MLIST:[oss-security] 20090818 Re: CVE-2007-1558 update (was: mailfilter 0.8.2 fixes CVE-2007-1558 (APOP))	CVE-2007-1558
MLIST:[oss-security] 20090819 CVE Request pidgin	CVE-2009-3025
MLIST:[oss-security] 20090821 expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090824 CVE id request: pidgin	CVE-2009-3026
MLIST:[oss-security] 20090825 CVE-2009-2698 kernel: udp socket NULL ptr dereference	CVE-2009-2698
MLIST:[oss-security] 20090826 CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure	CVE-2009-3001
MLIST:[oss-security] 20090826 Re: CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090826 Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090827 Re: CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure	CVE-2009-3002
MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090828 CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090829 Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090831 CVE id request: silc-toolkit	CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090831 CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090831 Re: Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090901 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090903 CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2009-3228
MLIST:[oss-security] 20090903 More CVE-2009-2408 like issues	CVE-2009-2408 CVE-2009-3490 CVE-2009-3765 CVE-2009-3766 CVE-2009-3767
MLIST:[oss-security] 20090903 Re: CVE id request: silc-toolkit	CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090903 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090904 CVE request: kernel: NULL pointer dereference in sg_build_indirect()	CVE-2009-3288
MLIST:[oss-security] 20090904 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090908 CVE Request - glib symlink copying permission exposure	CVE-2009-3289
MLIST:[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection	CVE-2009-3232
MLIST:[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8	CVE-2009-3111
MLIST:[oss-security] 20090910 Re: OpenOffice.org CVE-2009-2139	CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090911 Re: OpenOffice.org CVE-2009-2139	CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090912 CVE request(?): Thin: Client IP spoofing	CVE-2009-3287
MLIST:[oss-security] 20090914 CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090914 Re: CVE for recent cyrus-imap issue	CVE-2009-2632 CVE-2009-3235
MLIST:[oss-security] 20090914 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090915 CVE-2009-1883 kernel: missing capability check in z90crypt	CVE-2009-1883
MLIST:[oss-security] 20090915 Re: CVE-2009-1883 kernel: missing capability check in z90crypt	CVE-2009-1883
MLIST:[oss-security] 20090916 CVE id request: changetrack	CVE-2009-3233
MLIST:[oss-security] 20090916 CVE request: kernel: cfg80211: fix looping soft lockup in find_ie()	CVE-2009-3280
MLIST:[oss-security] 20090916 CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090917 Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] 20090917 Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2563
MLIST:[oss-security] 20090918 CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090918 Insecure pid directory permissions for postfix on Debian / Ubuntu	CVE-2009-2939
MLIST:[oss-security] 20090920 Re: CVE Request -- PHP 5 - 5.2.11	CVE-2009-3294
MLIST:[oss-security] 20090921 CVE request: kernel: issue with O_EXCL creates on NFSv4	CVE-2009-3286
MLIST:[oss-security] 20090921 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090922 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090923 Re: More CVE-2009-2408 like issues	CVE-2009-3490 CVE-2009-3765 CVE-2009-3767
MLIST:[oss-security] 20090925 CVE Request -- Xen -- PyGrub	CVE-2009-3525
MLIST:[oss-security] 20091001 CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091001 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091002 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091006 Kernel ecryptfs CVE id (CVE-2009-2908)	CVE-2009-2908
MLIST:[oss-security] 20091007 More kernel CVE info (CVE-2009-2909)	CVE-2009-2909
MLIST:[oss-security] 20091009 CVE request: Unbound	CVE-2009-3602
MLIST:[oss-security] 20091009 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091009 Re: CVE request: Unbound	CVE-2009-3602
MLIST:[oss-security] 20091013 Re: Duplicate CVE assignment notification [was: CVE id request: django]	CVE-2009-3695
MLIST:[oss-security] 20091014 CVE Request - backintime	CVE-2009-3611
MLIST:[oss-security] 20091014 CVE Request -- phpMyAdmin	CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091014 CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE Request - backintime	CVE-2009-3611
MLIST:[oss-security] 20091014 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2009-3612
MLIST:[oss-security] 20091015 Re: CVE Request -- PHP 5 - 5.2.11	CVE-2009-3546
MLIST:[oss-security] 20091015 Re: CVE Request -- phpMyAdmin	CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091015 Re: CVE request kernel: flood ping cause	CVE-2009-3613
MLIST:[oss-security] 20091015 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091016 CVE Request - aria2 - 1.6.2	CVE-2009-3617
MLIST:[oss-security] 20091016 QEMU VNC use-after-free	CVE-2009-3616
MLIST:[oss-security] 20091016 Re: CVE Request - aria2 - 1.6.2	CVE-2009-3617
MLIST:[oss-security] 20091016 Re: QEMU VNC use-after-free	CVE-2009-3616
MLIST:[oss-security] 20091016 Re: viewvc: CVE request: XSS and illegal characters while printing name-value pairs	CVE-2009-3618 CVE-2009-3619
MLIST:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[oss-security] 20091019 CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised	CVE-2009-3620
MLIST:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[oss-security] 20091019 Re: CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised	CVE-2009-3620
MLIST:[oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues	CVE-2009-2911
MLIST:[oss-security] 20091021 CVE request: Wordpress Trackback DoS	CVE-2009-3622
MLIST:[oss-security] 20091021 Re: CVE request: Wordpress Trackback DoS	CVE-2009-3622
MLIST:[oss-security] 20091022 CVE Request -- Sahana	CVE-2009-3625
MLIST:[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases	CVE-2009-3624
MLIST:[oss-security] 20091022 CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client	CVE-2009-3623
MLIST:[oss-security] 20091022 Re: CVE Request -- Sahana	CVE-2009-3625
MLIST:[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases	CVE-2009-3624
MLIST:[oss-security] 20091022 Re: CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client	CVE-2009-3623
MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091022 Regarding expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()	CVE-2009-3638
MLIST:[oss-security] 20091023 CVE request: kvm: update_cr8_intercept() NULL pointer dereference	CVE-2009-3640
MLIST:[oss-security] 20091023 CVE-2009-3626 assigment notification - Perl - perl-5.10.1	CVE-2009-3626
MLIST:[oss-security] 20091023 CVE-2009-3627 assignment notification - HTML-Parser-3.63	CVE-2009-3627
MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091023 Re: CVE id request: typo3	CVE-2009-3628 CVE-2009-3629 CVE-2009-3630 CVE-2009-3631 CVE-2009-3632 CVE-2009-3633 CVE-2009-3634 CVE-2009-3635 CVE-2009-3636
MLIST:[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()	CVE-2009-3638
MLIST:[oss-security] 20091023 Re: proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification	CVE-2009-3639
MLIST:[oss-security] 20091023 proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification	CVE-2009-3639
MLIST:[oss-security] 20091024 Re: CVE request: kvm: update_cr8_intercept() NULL pointer dereference	CVE-2009-3640
MLIST:[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1	CVE-2009-3641
MLIST:[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1	CVE-2009-3641
MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091026 Re: More CVE-2009-2408 like issues	CVE-2009-3766
MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-3720
MLIST:[oss-security] 20091029 CVE request: kvm: check cpl before emulating debug register access	CVE-2009-3722
MLIST:[oss-security] 20091029 Re: CVE request: kvm: check cpl before emulating debug register access	CVE-2009-3722
MLIST:[oss-security] 20091102 CVE request: kernel: connector security bypass	CVE-2009-3725
MLIST:[oss-security] 20091102 Re: CVE request: kernel: connector security bypass	CVE-2009-3725
MLIST:[oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference	CVE-2009-3547
MLIST:[oss-security] 20091105 CVE request: kernel: NULL pointer dereference in nfs4_proc_lock()	CVE-2009-3726
MLIST:[oss-security] 20091105 CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091105 Re: CVE request: kernel: NULL pointer dereference in nfs4_proc_lock()	CVE-2009-3726
MLIST:[oss-security] 20091105 Re: CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091107 Re: CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091107 Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091109 CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff()	CVE-2009-3888
MLIST:[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files	CVE-2009-3889 CVE-2009-3939
MLIST:[oss-security] 20091113 Re: CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff()	CVE-2009-3888
MLIST:[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files	CVE-2009-3889
MLIST:[oss-security] 20091115 CVE Id request: request-tracker	CVE-2009-3892
MLIST:[oss-security] 20091115 CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091116 Re: CVE Id request: request-tracker	CVE-2009-3892
MLIST:[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] Re: 20090212 CVE Request -- net-snmp (sensitive host information disclosure)	CVE-2008-6123
MLIST:[oss-security] Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2562
MLIST:[owl-users] 20040619 Linux 2.4.26-ow2	CVE-2004-0447 CVE-2004-0565
MLIST:[owm-announce] 20060502 OpenWebMail version 2.52	CVE-2006-2190
MLIST:[pam-list] 20070123 Linux-PAM 0.99.7.1 released	CVE-2007-0003
MLIST:[pam-list] 20090309 Linux-PAM 1.0.4 released	CVE-2009-0579
MLIST:[pam-mount-user] 20080905 pam_mount 0.47 released	CVE-2008-3970
MLIST:[pdns-users] 20080806 Security update: PowerDNS Authoritative Server 2.9.21.1 released	CVE-2008-3337
MLIST:[pennmush-announce] 20070311 PennMUSH 1.8.2p3 and 1.8.3p1 Released	CVE-2007-1431
MLIST:[pgsql-admin] 20020821 Re: OT: password encryption (salt theory)	CVE-2002-1657
MLIST:[pgsql-announce] 20020824 PostgreSQL 7.2.2: Security Release	CVE-2002-1402
MLIST:[pgsql-announce] 20021003 v7.2.3 Released to fix Potentially Critical Bug	CVE-2002-1642
MLIST:[pgsql-announce] 20050201 PostgreSQL Security Release	CVE-2005-0227
MLIST:[pgsql-announce] 20050502 IMPORTANT: two new PostgreSQL security problems found	CVE-2005-1409 CVE-2005-1410
MLIST:[pgsql-announce] 20060109 CRITICAL RELEASE: Minor Releases to Fix DoS Vulnerability	CVE-2006-0105
MLIST:[pgsql-announce] 20060214 Minor Releases 7.3 thru 8.1 Available to Fix Security Issue	CVE-2006-0553
MLIST:[pgsql-announce] 20060523 Security Releases for All Active Versions	CVE-2006-2313 CVE-2006-2314
MLIST:[pgsql-bugs] 20050121 Privilege escalation via LOAD	CVE-2005-0227
MLIST:[pgsql-bugs] 20090227 BUG #4680: Server crashed if using wrong (mismatch) conversion functions	CVE-2009-0922
MLIST:[pgsql-bugs] 20090227 Re: BUG #4680: Server crashed if using wrong (mismatch) conversion functions	CVE-2009-0922
MLIST:[pgsql-committers] 20050121 pgsql: Prevent overrunning a heap-allocated buffer is more than 1024	CVE-2005-0245
MLIST:[pgsql-committers] 20050127 pgsql: Fix security and 64-bit issues in contrib/intagg.	CVE-2005-0246
MLIST:[pgsql-committers] 20050207 pgsql: Prevent 4 more buffer overruns in the PL/PgSQL parser.	CVE-2005-0245 CVE-2005-0247
MLIST:[pgsql-hackers] 20050127 Permissions on aggregate component functions	CVE-2005-0244
MLIST:[pgsql-patches] 20050120 Re: WIP: pl/pgsql cleanup	CVE-2005-0245
MLIST:[pgsql-www] 20090909 Re: Incorrect CVE reference on security page	CVE-2009-3230
MLIST:[php-cvs] 20060330 cvs: php-src /ext/standard info.c	CVE-2006-0996
MLIST:[php-dev] 20070209 PHP 5.2.1 crashing Apache/IIS...	CVE-2007-0911
MLIST:[php-dev] 20070210 Re: PHP 5.2.1 crashing Apache/IIS...	CVE-2007-0911
MLIST:[phpmyadmin-news] 20080915 phpMyAdmin 2.11.9.1 is released	CVE-2008-4096
MLIST:[phpwiki-talk] 20070408 Important UpLoad security fix! was [Fwd: [phpwiki - Open Discussion] RE: upload security risk]	CVE-2007-2025
MLIST:[phpwiki-talk] 20070413 Fwd: Critical phpwiki c99shell exploit	CVE-2007-2024
MLIST:[pkgsrc-changes] 20090610 CVS commit: pkgsrc/lang/ruby18-base	CVE-2009-1904
MLIST:[plash] 20070301 TTY ioctl() vulnerability	CVE-2007-1400
MLIST:[png-mng-implement] 20070911 FW: Compiler warnings for pngrtran.c	CVE-2007-5268
MLIST:[png-mng-implement] 20070911 FW: Suspicious `sizeof' line 694 of pngset.c	CVE-2007-5266
MLIST:[png-mng-implement] 20070914 libpng-1.0.29beta1 and libpng-1.2.21beta1	CVE-2007-5266 CVE-2007-5268
MLIST:[png-mng-implement] 20071004 Libpng-1.2.21 and libpng-1.0.29 released	CVE-2007-5268 CVE-2007-5269
MLIST:[png-mng-implement] 20071005 libpng 1.2.21 iCCP chunk handling bug	CVE-2007-5267
MLIST:[png-mng-implement] 20071015 libpng 1.2.21 iCCP chunk handling bug	CVE-2007-5267
MLIST:[png-mng-implement] 20080918 libpng-1.0.40 and libpng-1.2.32 available	CVE-2008-3964
MLIST:[png-mng-implement] 20081126 Memory overwriting bug in png_check_keyword()	CVE-2008-5907
MLIST:[png-mng-implement] 20090219 libpng-1.2.35 and libpng-1.0.43 fix security vulnerability	CVE-2009-0040
MLIST:[poppler] 20090123 poppler/JBIG2Stream.cc	CVE-2009-0756
MLIST:[poppler] 20090128 poppler/Form.cc	CVE-2009-0755
MLIST:[postfix-announce] 20080814 Postfix local privilege escalation via hardlinked symlinks	CVE-2008-2936
MLIST:[postgrey] 20050414 ANNOUNCE: Postgrey 1.21 (SECURITY)	CVE-2005-1127
MLIST:[postgrey] 20050414 Problem with crashing postgrey	CVE-2005-1127
MLIST:[postgrey] 20050414 Re: Problem with crashing postgrey	CVE-2005-1127
MLIST:[pound-list] 20051020 ANNOUNCE: Pound - reverse proxy and load balancer - v1.9.4	CVE-2005-3751
MLIST:[pound_list] 20050426 remote buffer overflow in pound 1.8.2 + question abotu Host header	CVE-2005-1391
MLIST:[productinfo] 20080611 Ingate Firewall and SIParator affected by SNMPv3 vulnerability	CVE-2008-0960
MLIST:[pulseaudio-discuss] 20080124 [ANNOUNCE] PulseAudio 0.9.9	CVE-2008-0008
MLIST:[python-dev] 20070824 tarfile and directory traversal vulnerability	CVE-2007-4559
MLIST:[python-dev] 20070825 tarfile and directory traversal vulnerability	CVE-2007-4559
MLIST:[qemu-devel] 20081123 [PATCH] Fix off-by-one bug limiting VNC passwords to 7 chars	CVE-2008-5714
MLIST:[qemu-devel] 20081210 Re: [RESEND] [PATCH v2] Fix off-by-one bug limiting VNC passwords to 7 chars	CVE-2008-5714
MLIST:[qemu-devel] 20090525 Re: [STABLE] [BUG] VNC mode can crash QEMU	CVE-2009-3616
MLIST:[quagga-dev] 20060329 quagga locks with command sh ip bgp community 1:*	CVE-2006-2276
MLIST:[quagga-dev] 20090203 [quagga-dev 6391] [PATCH] BGP 4-byte ASN bug fixes	CVE-2009-1572
MLIST:[quartzcomposer-dev] 20050510 Quartz Quicktime embedded in remote webpages...	CVE-2005-1579
MLIST:[quartzcomposer-dev] 20050511 Re: Quartz Quicktime embedded in remote webpages...	CVE-2005-1579
MLIST:[rdiffweb-discuss] 20070329 New features and changes to rdiffweb	CVE-2007-2747
MLIST:[release-team] 20090312 Another Evolution-Data-Server freeze break	CVE-2009-0582
MLIST:[rsync-announce] 20080408 Rsync 3.0.2 released w/xattr security fix (attn: 2.6.9 onward)	CVE-2008-1720
MLIST:[rsyncrypto-devel] 20080523 Advisory - Rsyncrypto maybe affected from Debian OpenSSL reduced entropy problem	CVE-2008-0166
MLIST:[rt-announce] 20090914 RT 3.6.9 Released	CVE-2009-3892
MLIST:[rt-announce] 20090914 RT 3.8.5 Released	CVE-2009-3892
MLIST:[rubyonrails-security] 20090610 DoS Vulnerability in Ruby (CVE-2009-1904)	CVE-2009-1904
MLIST:[rubyonrails-security] 20090904 XSS Vulnerability in Ruby on Rails	CVE-2009-3009
MLIST:[sahana-maindev] 20091019 SEVERE Security Vulnerability in Sahana Identified and Patched	CVE-2009-3625
MLIST:[samba-technical] 20020613 struct enum_csc_policy isn't terminated	CVE-2002-2196
MLIST:[scadasec] 20081211 Checkpoint Sources plus SPLAT Remote Root Exploit.	CVE-2008-5850
MLIST:[screen-users] 20061023 Secfix release for screen: screen-4.0.3	CVE-2006-4573
MLIST:[secure-testing-announce] 20050828 [DTSA-6-1] New cgiwrap packages fix multiple vulnerabilities	CVE-2005-3254 CVE-2005-3255
MLIST:[secure-testing-commits] 20081103 r10251 - data/CVE	CVE-2008-4539
MLIST:[secureideas-base-devel] 20060328 3 XSS in BASE 1.2.4	CVE-2006-1590
MLIST:[security-announce] 20060815 Proxy Generation Tool Vulnerability	CVE-2006-4232
MLIST:[security-announce] 20060815 Temporary File Handling Vulnerability	CVE-2006-4233
MLIST:[security-announce] 20070206 rPSA-2007-0025-1 postgresql postgresql-server	CVE-2007-0555 CVE-2007-0556
MLIST:[security-announce] 20070208 rPSA-2007-0028-1 gd	CVE-2007-0455
MLIST:[security-announce] 20070209 rPSA-2006-0233-1 dbus dbus-glib dbus-qt dbus-x11	CVE-2006-6107
MLIST:[security-announce] 20070409 Globus Security Advisory 2007-02: GSI-OpenSSH vulnerability	CVE-2006-4924 CVE-2006-5051
MLIST:[security-announce] 20070906 rPSA-2007-0179-2 krb5 krb5-server krb5-services krb5-test krb5-workstation	CVE-2007-3999
MLIST:[security-announce] 20080317 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues	CVE-2006-2937 CVE-2006-2940 CVE-2006-4339 CVE-2006-4343 CVE-2007-5269 CVE-2007-5618 CVE-2008-0923 CVE-2008-1340 CVE-2008-1361 CVE-2008-1362 CVE-2008-1363 CVE-2008-1364 CVE-2008-1392
MLIST:[security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability	CVE-2008-1483
MLIST:[security-announce] 20080918 VMSA-2008-0015 Updated ESXi and ESX 3.5 packages address critical security issue in openwsman	CVE-2008-2234
MLIST:[security-announce] 20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues	CVE-2008-3761 CVE-2008-4916 CVE-2009-0177 CVE-2009-0518 CVE-2009-0908 CVE-2009-0909 CVE-2009-0910 CVE-2009-1146 CVE-2009-1147
MLIST:[security-announce] 20090410 VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability	CVE-2009-1244
MLIST:[security-announce] 20090701 VMSA-2009-0008 ESX Service Console update for krb5	CVE-2009-0846
MLIST:[security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server	CVE-2006-5752 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CVE-2007-5000 CVE-2007-6388 CVE-2008-0005 CVE-2009-0040
MLIST:[security-announce] 20090831 VMSA-2009-0011 VMware Studio 2.0 addresses a security issue in the public beta version of Studio 2.0	CVE-2009-2968
MLIST:[security-announce] 20090904 VMSA-2009-0012 VMware Movie Decoder, VMware Workstation, VMware Player, and VMware ACE resolve security issues.	CVE-2009-0199 CVE-2009-2628
MLIST:[security-announce] 20091001 VMSA-2009-0013 VMware Fusion resolves two security issues	CVE-2009-3281 CVE-2009-3282
MLIST:[security-announce] 20091027 VMSA-2009-0015 VMware hosted products and ESX patches resolve two security issues	CVE-2009-2267 CVE-2009-3733
MLIST:[security] 20060906 Re: mailman 2.1.5-8sarge3: screwup between security and maintainer upload	CVE-2006-2191
MLIST:[security] 20070321 MyOpenID	CVE-2007-1651 CVE-2007-1652
MLIST:[security] 20070322 MyOpenID	CVE-2007-1651 CVE-2007-1652
MLIST:[selinux] 20060313 [SECURITY] SELinux ptrace bug (CVE-2006-1052)	CVE-2006-1052
MLIST:[shttpd-general] 20071203 Security bugs in SHTTPD	CVE-2007-6404 CVE-2007-6405
MLIST:[sleuthkit-announce] 20070614 TSK 2.09 Released and new Wiki	CVE-2007-4195 CVE-2007-4196 CVE-2007-4197 CVE-2007-4198 CVE-2007-4199 CVE-2007-4200
MLIST:[smb4k-announce] 20061221 Smb4K 0.8.0 and security fixes released	CVE-2007-0472 CVE-2007-0473 CVE-2007-0474 CVE-2007-0475
MLIST:[sork] 20050422 Accounts 2.1.2 (final)	CVE-2005-1316
MLIST:[sork] 20050422 Forwards 2.2.2 (final)	CVE-2005-1318
MLIST:[sork] 20050422 Passwd 2.2.2 (final)	CVE-2005-1313
MLIST:[sork] 20050422 Vacation 2.2.2 (final)	CVE-2005-1321
MLIST:[source-changes] 20050913 CVS commit: [netbsd-3] src/sys/compat/freebsd	CVE-2005-4776
MLIST:[source-changes] 20051021 CVS commit: src/sys/kern	CVE-2005-4782
MLIST:[source-changes] 20070226 CVS: cvs.openbsd.org: src	CVE-2007-1365
MLIST:[source-changes] 20081017 CVS: cvs.openbsd.org: src	CVE-2008-3831
MLIST:[spamassassin-announce] 20040805 [SA-Announce] SpamAssassin 2.64 is released!	CVE-2004-0796
MLIST:[spamassassin-announce] 20050615 Denial of Service Vulnerability in Apache SpamAssassin 3.0.1-3.0.3	CVE-2005-1266
MLIST:[spamassassin-devel] 20051101 [Bug 4570] Mail with lots of To addresses in header triggers Bus error in Perl [CVE-2005-3351]	CVE-2005-3351
MLIST:[squid-announce[ 20080322 Advisory Squid-2007:2 updated	CVE-2008-1612
MLIST:[squirrelmail-cvs] 20040427 [SM-CVS] CVS: squirrelmail/functions abook_database.php,1.15.2.1,1.15.2.2	CVE-2004-0521
MLIST:[squirrelmail-cvs] 20040523 [SM-CVS] CVS: squirrelmail/functions mime.php,1.265.2.27,1.265.2.28	CVE-2004-0520
MLIST:[squirrelmail-devel] 20040511 [SM-DEVEL] SquirrelMail 1.4.3-RC1 Release	CVE-2004-0521
MLIST:[squirrelmail-devel] 20071213 [SM-DEVEL] SECURITY: 1.4.12 Package Compromise	CVE-2007-6348
MLIST:[squirrelmail-devel] 20071214 Re: [SM-DEVEL] SECURITY: 1.4.12 Package Compromise	CVE-2007-6348
MLIST:[strongSwan] 20090527 [strongSwan] ANNOUNCE: strongSwan 4.3.1 and 4.2.15 released	CVE-2009-1957 CVE-2009-1958
MLIST:[struts-devel] 20060122 Re: Validation Security Hole?	CVE-2006-1546
MLIST:[struts-user] 20060121 Validation Security Hole?	CVE-2006-1546
MLIST:[stunnel-announce] 20080503 stunnel 4.23 released	CVE-2008-2400
MLIST:[stunnel-announce] 20080519 stunnel 4.24 released	CVE-2008-2420
MLIST:[suPHP] 20080330 SECURITY ISSUE: Immediate update advised	CVE-2008-1614
MLIST:[swfdec] 20080729 Swfdec 0.6.8 released	CVE-2008-3796
MLIST:[tavi-devel] 20020102 "Tavi security advisory	CVE-2002-2106
MLIST:[tcpdump-workers] 20011015 Bug in print-bgp.c?	CVE-2002-1350
MLIST:[tcpdump-workers] 20031224 Seg fault of tcpdump (v 3.8.1 and below) with malformed l2tp packets	CVE-2003-1029
MLIST:[tcpdump-workers] multiple vulnerabilities in tcpdump 3.8.1	CVE-2004-0055 CVE-2004-0057
MLIST:[tech-security] 20061116 Re: [Full-disclosure] NetBSD all versions FireWire IOCTL kernel integer overflow information disclousure	CVE-2006-6013
MLIST:[tech-security] 20061214 NetBSD Security Note 20061214-1: Kernel memory leakage in firewire interface	CVE-2006-6013
MLIST:[tep-commits] 20031217 [TEP-COMMIT] CVS: catalog/catalog/includes/functions html_output.php,1.58,1.59	CVE-2003-1219
MLIST:[thttpd] 20060305 Re: htpasswd.c security issues	CVE-2006-1078 CVE-2006-1079
MLIST:[thttpd] 20060305 htpasswd.c security issues	CVE-2006-1078 CVE-2006-1079
MLIST:[tls] 20091104 MITM attack on delayed TLS-client auth through renegotiation	CVE-2009-3555
MLIST:[tls] 20091104 TLS renegotiation issue	CVE-2009-3555
MLIST:[tomcat-dev] 20050103 Re: Fwd: XSS in Jakarta Tomcat 5.5.6	CVE-2005-4838
MLIST:[tomcat-dev] 20050103 [PATCH jakarta-servletapi-5] Re: Fwd: XSS in Jakarta Tomcat 5.5.6	CVE-2005-4838
MLIST:[tomcat-dev] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability	CVE-2008-5519
MLIST:[tomcat-user] 20080602 [SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability	CVE-2008-1947
MLIST:[tomcat-users] 20071015 [Security] - Important vulnerability disclosed in Apache Tomcat webdav servlet	CVE-2007-5461
MLIST:[turba] 20050422 Turba 1.2.5 (final)	CVE-2005-1315
MLIST:[twiki-announce] 20090430 Announcement: TWiki 4.3.1 Production Release	CVE-2009-1339
MLIST:[uim] 20050220 uim 0.4.5.1 released	CVE-2005-0503
MLIST:[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)	CVE-2007-3846
MLIST:[valgrind-announce] 20090103 Valgrind-3.4.0 is available	CVE-2008-4865
MLIST:[vim-dev] 20070426 feedkeys() allowed in sandbox	CVE-2007-2438
MLIST:[vim-dev] 20070428 Re: feedkeys() allowed in sandbox	CVE-2007-2438
MLIST:[vim-dev] 20080903 Patch 7.2.010	CVE-2008-4101
MLIST:[vim_dev] 20080817 Re: Anyone fixing SA31464?	CVE-2008-4677
MLIST:[vim_dev] 20080824 Bug with v_K and potentially K command	CVE-2008-4101
MLIST:[vimannounce] 20070512 Stable Vim version 7.1 has been released	CVE-2007-2438
MLIST:[vlc-devel] 20070102 Security hole in VLC media player for Mac...	CVE-2007-0017
MLIST:[vlc-devel] 20070626 subtitle processing overflows	CVE-2007-6681
MLIST:[vlc-devel] 20070630 vlc: svn commit r20715 (fenrir)	CVE-2007-6681
MLIST:[vlc-devel] 20070915 vlc: svn commit r22023 (courmisch)	CVE-2007-6684
MLIST:[vlc-devel] 20071226 Regarding "obscure" security problem	CVE-2007-6683
MLIST:[vlc-devel] 20080824 commit: MMS integers handling fixes, including buffer overflow ( Rémi Denis-Courmont )	CVE-2008-3794
MLIST:[vnc-list] 20060513 Version 4.1.2	CVE-2006-2369
MLIST:[vnc-list] 20081126 VNC Viewer Vulnerability CVE-2008-4770	CVE-2008-4770
MLIST:[webcalendar-announce] 20070304 Announce: Release 1.0.5 (security patch)	CVE-2007-1343 CVE-2007-1483 CVE-2008-2836
MLIST:[websecurity] 20090519 [WEB SECURITY] Trustwave's SpiderLabs Security Advisory TWSL2009-001 and EnableSecurity Advisory ES-20090500	CVE-2009-1593 CVE-2009-1594
MLIST:[wget-notify] 20090805 [bug #27183] Wget likely suffers from the \0 SSL cert vulnerability	CVE-2009-3490
MLIST:[wget] 20040517 Re: Wget race condition vulnerability (fwd)	CVE-2004-2014
MLIST:[wget] 20040517 Wget race condition vulnerability (fwd)	CVE-2004-2014
MLIST:[www-announce] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability	CVE-2008-5519
MLIST:[x-org announce] 20070109 X.Org Security Advisory: multiple integer overflows in dbe and render extensions	CVE-2006-6101 CVE-2006-6102 CVE-2006-6103
MLIST:[xapian-discuss] 20090909 Cross-site scripting issue in Omega	CVE-2009-2947
MLIST:[xchat-announce] 20040405 xchat 2.0.x Socks5 Vulnerability	CVE-2004-0409
MLIST:[xen-dev] 20080718 [PATCH][XSM][FLASK] Argument handling bugs in XSM:FLASK	CVE-2008-3687
MLIST:[xen-devel] 20080930 Re: [PATCH] [Xend] Move some backend configuration	CVE-2008-4405
MLIST:[xen-devel] 20080930 [PATCH] [Xend] Move some backend configuration	CVE-2008-4405
MLIST:[xen-devel] 20081218 PATCH: Actually make /local/domain/$DOMID readonly to the guest	CVE-2008-5716
MLIST:[xen-devel] 20081218 Re: PATCH: Actually make /local/domain/$DOMID readonly to the guest	CVE-2008-5716
MLIST:[xml-dev] 20030202 Re: Elliotte Rusty Harold on Web Services	CVE-2003-1564
MLIST:[xml] 20080820 Security fix for libxml2	CVE-2003-1564 CVE-2008-3281
MLIST:[xorg-announce] 20070403 various integer overflow vulnerabilites in xserver, libX11 and libXfont	CVE-2007-1003 CVE-2007-1351 CVE-2007-1352 CVE-2007-1667
MLIST:[xorg-announce] 20070906 xorg-server 1.4	CVE-2007-4730
MLIST:[xorg-announce] 20071002 [ANNOUNCE] X.Org security advisory: multiple vulnerabilities in X font server	CVE-2007-4568 CVE-2007-4990
MLIST:[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension	CVE-2006-1526
MLIST:[xorg] 20060620 X.Org security advisory: setuid return value check problems	CVE-2006-4447
MLIST:[xorg] 20080117 X.Org security advisory: multiple vulnerabilities in the X server	CVE-2007-5760 CVE-2007-5958 CVE-2007-6427 CVE-2007-6428 CVE-2007-6429 CVE-2008-0006
MLIST:[xorg] 20080611 X.Org security advisory june 2008 - Multiple vulnerabilities in X server extensions	CVE-2008-1377 CVE-2008-1379 CVE-2008-2360 CVE-2008-2361 CVE-2008-2362
MLIST:[zope-announce] 20090806 CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities	CVE-2009-0668 CVE-2009-0669
MLIST:[zope-announce] 20090901 CVE-2009-2701: Releases to fix ZODB ZEO server vulnerability	CVE-2009-2701
MLIST:[zsh-workers] 20071202 difflog.pl and "security"	CVE-2007-6209
MLIST:[zsh-workers] 20071203 Re: difflog.pl and "security"	CVE-2007-6209

Page Last Updated: November 20, 2009