[Secure-testing-commits] r7501 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Tue Dec 4 16:37:01 UTC 2007


Author: nion
Date: 2007-12-04 16:37:00 +0000 (Tue, 04 Dec 2007)
New Revision: 7501

Modified:
   data/CVE/list
Log:
CVE-2007-6209 fixed in zsh 4.3.4-dev-3-2


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-12-04 13:41:11 UTC (rev 7500)
+++ data/CVE/list	2007-12-04 16:37:00 UTC (rev 7501)
@@ -7,7 +7,7 @@
 CVE-2007-6211 [privilege escalation in sing]
 	- sing <unfixed> (high; bug #454167)
 CVE-2007-6209 [insecure tmp file handling in difflog.pl shipped by zsh]
-	- zsh <unfixed> (low; bug #454073)
+	- zsh 4.3.4-dev-3-2 (low; bug #454073)
 CVE-2007-6201 (Unspecified vulnerability in Wesnoth before 1.2.8 allows attackers to ...)
 	- wesnoth 1:1.2.8-1 (low)
 CVE-2007-6200 (Unspecified vulnerability in rsync before 3.0.0pre6, when running a ...)
@@ -2245,7 +2245,7 @@
 CVE-2007-5504 (Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and ...)
 	NOT-FOR-US: Oracle
 CVE-2007-5503 (Multiple integer overflows in Cairo before 1.4.12 might allow remote ...)
-	- libcairo <unfixed> (medium; bug #453686)
+	- libcairo 1.4.10-1.1 (medium; bug #453686)
 CVE-2007-5502 (The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does ...)
 	NOT-FOR-US: OpenSSL Fips object module
 CVE-2007-5501 (The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux ...)




More information about the Secure-testing-commits mailing list