[Secure-testing-commits] r7553 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Fri Dec 7 22:26:45 UTC 2007
Author: jmm-guest
Date: 2007-12-07 22:26:44 +0000 (Fri, 07 Dec 2007)
New Revision: 7553
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
two more no-dsa issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-07 21:14:09 UTC (rev 7552)
+++ data/CVE/list 2007-12-07 22:26:44 UTC (rev 7553)
@@ -15728,6 +15728,7 @@
CVE-2007-0227 (slocate 3.1 does not properly manage database entries that specify ...)
- slocate 3.1-1.1 (bug #411937; low)
[sarge] - slocate <not-affected> (Performs correct access checks)
+ [etch] - slocate <no-dsa> (Minor issue)
NOTE: slocate will allow users to find files in directories with the
NOTE: executable bit set but without the readable bit set. This is
NOTE: an information leak.
@@ -27442,6 +27443,7 @@
- banshee 0.11.2+dfsg-1 (low)
- liferea 1.4.9-1 (low; bug #451548)
- blam 1.8.4-1 (low)
+ [etch] - blam <no-dsa> (Minor issue)
TODO: check all packages
NOTE: lintian bug filed: #451559
CVE-2005-4790 (Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and ...)
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2007-12-07 21:14:09 UTC (rev 7552)
+++ data/spu-candidates.txt 2007-12-07 22:26:44 UTC (rev 7553)
@@ -10,6 +10,15 @@
--
+blam (CVE-2005-4791)
+
+--
+
+slocate (CVE-2007-0227)
+#411937
+
+--
+
tomboy (CVE-2005-4790)
--
@@ -21,5 +30,3 @@
zsh (CVE-2007-6209)
bug #454073)
-
---
\ No newline at end of file
More information about the Secure-testing-commits
mailing list