[Secure-testing-commits] r4834 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Mon Oct 9 17:56:59 UTC 2006


Author: jmm-guest
Date: 2006-10-09 17:56:56 +0000 (Mon, 09 Oct 2006)
New Revision: 4834

Modified:
   data/CVE/list
Log:
remove xfree86 unfixed markers that overlapped the
entries in DSA/list. Florian, if you find the time
it would be nice to have "make check" emits errors or
warnings for such situations.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-10-09 17:09:51 UTC (rev 4833)
+++ data/CVE/list	2006-10-09 17:56:56 UTC (rev 4834)
@@ -1577,9 +1577,6 @@
 	- libx11 2:1.0.0-7 (unimportant)
 	- xdm 1:1.0.5-1 (unimportant)
 	- xterm <unfixed> (unimportant)
-	[sarge] - xfree86 <unfixed> (low)
-	NOTE: The only issue really exploitable is the vtinit issue, all other are nice
-	NOTE: to have, but not security problems
 CVE-2006-4446 (Heap-based buffer overflow in DirectAnimation.PathControl COM object ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-4445 (** DISPUTED ** ...)
@@ -3230,10 +3227,8 @@
 CVE-2006-3741
 	RESERVED
 CVE-2006-3740 (Integer overflow in the scan_cidfont function in X.Org 6.8.2 and ...)
-	- xfree86 <removed>
 	- libxfont 1:1.2.2-1
 CVE-2006-3739 (Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X ...)
-	- xfree86 <removed>
 	- libxfont 1:1.2.2-1
 CVE-2006-3738 (Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL ...)
 	{DSA-1185-2}
@@ -3830,7 +3825,6 @@
 	{DSA-1178-1}
 	- freetype 2.2.1-5 (bug #379920; medium)
 	- libxfont 1:1.2.0-2 (medium; bug #383353)
-	[sarge] - xfree86 <unfixed> (medium)
 CVE-2006-3466
 	REJECTED
 CVE-2006-3465 (Unspecified vulnerability in the custom tag support for the TIFF ...)




More information about the Secure-testing-commits mailing list