[Secure-testing-commits] r7450 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Sat Dec 1 09:27:05 UTC 2007
Author: jmm-guest
Date: 2007-12-01 09:27:04 +0000 (Sat, 01 Dec 2007)
New Revision: 7450
Modified:
data/CVE/list
Log:
asterisk DSA about to come soon
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-01 09:14:13 UTC (rev 7449)
+++ data/CVE/list 2007-12-01 09:27:04 UTC (rev 7450)
@@ -132,10 +132,10 @@
- ruby-gnome2 <unfixed> (medium; bug #453689)
CVE-2007-6171 (SQL injection vulnerability in the Postgres Realtime Engine ...)
- asterisk <unfixed> (medium)
- NOTE: maintainer is aware of it, preparing upload atm
+ [sarge] - asterisk <not-affected> (Vulnerable code not present)
+ [etch] - asterisk <not-affected> (Vulnerable code not present)
CVE-2007-6170 (SQL injection vulnerability in the Call Detail Record Postgres logging ...)
- asterisk <unfixed> (medium)
- NOTE: maintainer is aware of it, preparing upload atm
CVE-2007-XXXX [rsync is prone to symlink attacks]
- rsync <unfixed> (low; bug #453652)
CVE-2007-6150 (The "internal state tracking" code for the random and urandom devices ...)
More information about the Secure-testing-commits
mailing list