[Secure-testing-commits] r5706 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Sun Apr 22 20:22:52 UTC 2007
Author: jmm-guest
Date: 2007-04-22 20:22:50 +0000 (Sun, 22 Apr 2007)
New Revision: 5706
Modified:
data/CVE/list
Log:
lha is non-free
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-04-22 20:05:31 UTC (rev 5705)
+++ data/CVE/list 2007-04-22 20:22:50 UTC (rev 5706)
@@ -164,6 +164,8 @@
NOT-FOR-US: 3proxy
CVE-2007-2030 (lharc.c in lha does not securely create temporary files, which might ...)
- lha <unfixed> (low)
+ [sarge] - lha <no-dsa> (Non-free not supported)
+ [etch] - lha <no-dsa> (Non-free not supported)
CVE-2007-2029
RESERVED
CVE-2007-2028 (Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to ...)
@@ -171,7 +173,7 @@
CVE-2007-2027 (Untrusted search path vulnerability in the add_filename_to_string ...)
- elinks <unfixed> (bug #417789; medium)
CVE-2007-2026 (The gnu regular expression code in file 4.20 allows context-dependent ...)
- - file <unfixed> (medium)
+ - file <unfixed> (low)
[sarge] - file <not-affected> (version too old)
[etch] - file <not-affected> (version too old)
NOTE: This bug was introduced in file 4.20.
More information about the Secure-testing-commits
mailing list