[Secure-testing-commits] r3728 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Sat Apr 1 12:29:10 UTC 2006
Author: jmm-guest
Date: 2006-04-01 12:29:04 +0000 (Sat, 01 Apr 2006)
New Revision: 3728
Modified:
data/CVE/list
Log:
another rpath issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-03-31 13:24:33 UTC (rev 3727)
+++ data/CVE/list 2006-04-01 12:29:04 UTC (rev 3728)
@@ -114,6 +114,9 @@
CVE-2006-XXXX [subversion rpath set to /tmp]
- subversion 1.3.0-5 (bug #359234; low)
[sarge] - subversion <not-affected> (No rpaths set in Sarge)
+CVE-2006-XXXX [libtunepimp rpath set to /tmp]
+ - libtunepimp <unfixed> (bug #359241; low)
+ [sarge] - libtunepimp <not-affected> (rpath not set to /tmp in Sarge)
CVE-2006-XXXX [gpib rpath set to /tmp]
- gpib <unfixed> (bug #359239; low)
[sarge] - gpib <not-affected> (rpath not set to /tmp in Sarge)
@@ -374,7 +377,7 @@
CVE-2006-1377 (Cross-site scripting (XSS) vulnerability in img.php in (1) EasyMoblog ...)
NOT-FOR-US: EasyMoblog
CVE-2006-1376 (The installation of Debian GNU/Linux 3.1r1 from the network install CD ...)
- - passwd 1:4.0.14-9 (bug #358210)
+ - passwd 1:4.0.14-9 (bug #358210; bug #356939)
CVE-2006-1375 (AdMan 1.0.20051221 and earlier allows remote attackers to obtain the ...)
NOT-FOR-US: AdMan
CVE-2006-1374 (SQL injection vulnerability in viewStatement.php in AdMan 1.0.20051221 ...)
More information about the Secure-testing-commits
mailing list