[Secure-testing-commits] r2606 - data/CVE
Joey Hess
joeyh at costa.debian.org
Fri Oct 28 18:27:18 UTC 2005
Author: joeyh
Date: 2005-10-28 18:27:13 +0000 (Fri, 28 Oct 2005)
New Revision: 2606
Modified:
data/CVE/list
Log:
more whittling away at
http://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=security;users=debian-security@lists.debian.org;ordering=tracked
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-10-28 12:31:16 UTC (rev 2605)
+++ data/CVE/list 2005-10-28 18:27:13 UTC (rev 2606)
@@ -1,3 +1,8 @@
+CVE-2005-XXXX (xdm: full-force SAINT attack crashes xdm)
+ - xdm (unfixed; bug #24706; low)
+ TODO: only reported once in 1998. Reproduce?
+CVE-2005-XXXX (libxaw6: passwords visible in widgets [fixed in libxaw7])
+ - libxaw6 (unfixed; bug #172890; low)
CVE-2005-3339 (Mantis before 0.19.3 caches the User ID longer than necessary, which ...)
- mantis <unfixed> (bug #330682; unknown)
CVE-2005-3338 (Unspecified vulnerability in Mantis before 0.19.3, when using ...)
@@ -787,7 +792,7 @@
TODO: file a bug, it's not really clear, whether this has security implications
CVE-2005-3088 [Insecure file creation in fetchmailconf may expose sensitive data]
RESERVED
- - fetchmail <unfixed> (bug filed; low)
+ - fetchmail <unfixed> (bug #336096; low)
CVE-2005-3111 (The handler code for backupninja 0.8 and earlier creates temporary ...)
{DSA-827-1}
- backupninja 0.8-2 (medium)
More information about the Secure-testing-commits
mailing list