Updating catalogs symantec backup exec updating subversion in leopard

So, CVE-1999-0257 and CVE-1999-0052 may be the same, though CVE-1999-0052 should be RECAST since this bug affects Linux and other OSes besides Free BSD.

Frech The description for BID:190, which links to CVE-1999-0052 (a Free BSD advisory), notes that the patches provided by Free BSD in CERT: CA-1998-13 suggest a connection between CVE-1999-0001 and CVE-1999-0052.

updating catalogs symantec backup exec-45updating catalogs symantec backup exec-19updating catalogs symantec backup exec-42

Status: Candidate Phase: Modified (20051217) Reference: CERT: CA-98-13-tcp-denial-of-service Reference: BUGTRAQ:19981223 Re: CERT Advisory CA-98.13 - TCP/IP Denial of Service Reference: CONFIRM: Reference: OSVDB:5707 Reference: URL: Votes: A Bugtraq posting indicates that the bug has to do with "short packets with certain options set," so the description should be modified accordingly. That one is related to nestea (CVE-1999-0257) and probably the one described in BUGTRAQ:19981023 nestea v2 against freebsd 3.0-Release The patch for nestea is in ip_input.c around line 750.The patches for CVE-1999-0001 are in lines 388&446.Status: Entry Reference: CERT: CA-98.08.qpopper_vul Reference: SGI:19980801-01-I Reference: URL:ftp://com/support/free/security/advisories/19980801-01-I Reference: AUSCERT: AA-98.01 Reference: XF:qpopper-pass-overflow Reference: BID:133 Reference: URL: Description: Information from SSL-encrypted sessions via PKCS #1. PKCS Reference: MS: MS98-002 Reference: URL: XF:nt-ssl-fix Description: Buffer overflow in NIS , in Sun's program.Status: Entry Reference: CERT: CA-98.06Reference: SUN:00170 Reference: URL:Status: Entry Reference: CERT: CA-98.09.imapd Reference: SUN:00177 Reference: URL:

doctype=coll&doc=secbull/177 Reference: BID:130 Reference: URL: Reference: XF:imap-authenticate-bo Description: Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command.

doctype=coll&doc=secbull/135 Description: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate is a duplicate of CVE-1999-0032.

Notes: All CVE users should reference CVE-1999-0032 instead of this candidate.

Christey BID:124 Consider MSKB: Q154174 BUGTRAQ:19971113 Linux IP fragment overlap bug Description: Land IP denial of service. Teardrop_Land Reference: FREEBSD: Free BSD-SA- Reference: HP: HPSBUX9801-076 Reference: URL: Display.do?

doc Id=HPSBUX9801-076 Reference: CISCO: Reference: XF:cisco-land Reference: XF:land Reference: XF:95-verv-tcp Reference: XF:land-patch Reference: XF:ver-tcpip-sys Description: FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. FTP_bounce Reference: XF:ftp-bounce Reference: XF:ftp-privileged-port Description: Buffer overflow in statd allows root privileges.

Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.