[Secure-testing-commits] r5182 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Tue Dec 26 19:07:37 CET 2006
Author: jmm-guest
Date: 2006-12-26 19:07:35 +0100 (Tue, 26 Dec 2006)
New Revision: 5182
Modified:
data/CVE/list
Log:
new w3m issue, fixed by myself for Etch (luk/aba, please review)
new openser issue, bug filed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-12-26 13:45:49 UTC (rev 5181)
+++ data/CVE/list 2006-12-26 18:07:35 UTC (rev 5182)
@@ -1,3 +1,8 @@
+CVE-2006-XXXX [openser permissions module buffer overflow]
+ - openser <unfixed> (medium)
+CVE-2006-XXXX [w3m format string issue]
+ - w3m 0.5.1-5.1 (low)
+ TODO: Check w3mee, is this forked version still needed?
CVE-2006-XXXX [insecure rpath in libflash-mozplugin]
- libflash 0.4.13-9 (low; bug #399508)
[etch] - libflash <no-dsa> (Not exploitable through directory writable by an unprivileged user)
More information about the Secure-testing-commits
mailing list