[Secure-testing-commits] r6445 - data/CVE

[nion at alioth.debian.org]

Author: nion
Date: 2007-08-30 15:33:25 +0000 (Thu, 30 Aug 2007)
New Revision: 6445

Modified:
   data/CVE/list
Log:
CVE-2007-4521 does not affect debian, voicemail backend not enabled

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-08-30 15:24:04 UTC (rev 6444)
+++ data/CVE/list	2007-08-30 15:33:25 UTC (rev 6445)
@@ -121,8 +121,9 @@
 CVE-2007-4522 (Multiple SQL injection vulnerabilities in Ripe Website Manager 0.8.9 ...)
 	NOT-FOR-US: Ripe Website Manager
 CVE-2007-4521 (Asterisk Open Source 1.4.5 through 1.4.11, when configured to use an ...)
-	- asterisk <unfixed> (bug #440187; low)
+	- asterisk <not-affected> (The voicemail backend is not enabled in Debian)
 	NOTE: Patch: http://lists.digium.com/pipermail/asterisk-commits/2007-August/015743.html
+	NOTE: the backend will be enabled in future uploads with a fixed package.
 CVE-2007-4520
 	RESERVED
 	TODO: check