[Secure-testing-commits] r2688 - data/CVE

[Florian Weimer]

Author: fw
Date: 2005-11-07 21:20:16 +0000 (Mon, 07 Nov 2005)
New Revision: 2688

Modified:
   data/CVE/list
Log:
CVE for horde3, fix syntax.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-07 21:14:19 UTC (rev 2687)
+++ data/CVE/list	2005-11-07 21:20:16 UTC (rev 2688)
@@ -310,7 +310,7 @@
 CVE-2005-3344 [Insecure default configuration in Debian's horde3]
 	RESERVED
 	{DSA-884-1}
-	- horde3 3.0.5-2 (#332290; #332289; medium)
+	- horde3 3.0.5-2 (bug #332290; bug #332289; medium)
 CVE-2005-3343
 	RESERVED
 CVE-2005-3342
@@ -1007,10 +1007,6 @@
 CVE-2005-3105 (The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito ...)
 	- kernel-source-2.6.8 2.6.8-16sarge1
 	- kernel-source-2.4.27 <unfixed> (bug #332569; medium)
-CVE-2005-XXXX [horde3 maintainer scripts don't set sufficiently strict permissions on config files]
-	- horde3 3.0.5-2 (bug #332289)
-CVE-2005-XXXX [horde3 permits arbitrary command execution before being finally configured]
-	- horde3 3.0.5-2 (bug #332290)
 CVE-2005-XXXX [Minor local DoS as libldap]
 	- openldap <unfixed> (bug #253838; low)
 	TODO: Check, whether openldap2.2 is affected as well