[Secure-testing-commits] r3922 - data/CVE

Stefan Fritsch stef-guest at costa.debian.org
Mon May 8 07:23:30 UTC 2006


Author: stef-guest
Date: 2006-05-08 07:23:24 +0000 (Mon, 08 May 2006)
New Revision: 3922

Modified:
   data/CVE/list
Log:
new rsync issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-07 18:38:03 UTC (rev 3921)
+++ data/CVE/list	2006-05-08 07:23:24 UTC (rev 3922)
@@ -274,7 +274,9 @@
 CVE-2006-2084 (Multiple cross-site scripting (XSS) vulnerabilities in FarsiNews 2.5.3 ...)
 	TODO: check
 CVE-2006-2083 (Integer overflow in the receive_xattr function in the extended ...)
-	TODO: check
+	- rsync 2.6.8-1 (bug #365614; high)
+	[sarge] - rsync <not-affected> (xattr patch appeared in 2.6.7)
+	[woody] - rsync <not-affected> (xattr patch appeared in 2.6.7)
 CVE-2006-2082
 	RESERVED
 CVE-2006-2081 (Oracle Database Server 10g Release 2 allows local users to execute ...)




More information about the Secure-testing-commits mailing list