[Secure-testing-commits] r7737 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Thu Dec 27 22:05:36 UTC 2007
Author: jmm-guest
Date: 2007-12-27 22:05:35 +0000 (Thu, 27 Dec 2007)
New Revision: 7737
Modified:
data/CVE/list
Log:
sing, gnome-screensaver no-dsa
jspwiki/path disclosure unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-27 17:55:18 UTC (rev 7736)
+++ data/CVE/list 2007-12-27 22:05:35 UTC (rev 7737)
@@ -323,6 +323,7 @@
- serendipity <not-affected> (This is an external plugin not included in our packages)
CVE-2007-6389 (The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 ...)
- gnome-screensaver <unfixed> (low; bug #455484)
+ [etch] - gnome-screensaver <no-dsa> (Minor issue)
CVE-2007-6388
RESERVED
CVE-2007-6358 (pdftops.pl before 1.20 in alternate pdftops filter allows local users ...)
@@ -790,6 +791,8 @@
NOT-FOR-US: Neocrome Seditio CMS
CVE-2007-6211 (Send ICMP Nasty Garbage (sing) on Debian GNU/Linux allows local users ...)
- sing 1.1-16 (low; bug #454167)
+ [etch] - sing <no-dsa> (Only exploitable in inherently broken setups)
+ [sarge] - sing <no-dsa> (Only exploitable in inherently broken setups)
CVE-2007-6209 (Util/difflog.pl in zsh 4.3.4 allows local users to overwrite arbitrary ...)
- zsh 4.3.4-dev-3-2 (low; bug #454073)
[etch] - zsh <no-dsa> (Minor issue)
@@ -4285,7 +4288,7 @@
- jspwiki 2.5.139-1 (medium; bug #445477)
[sarge] - jspwiki <no-dsa> (Contrib not supported)
CVE-2007-5119 (JSPWiki 2.4.103 and 2.5.139-beta allows remote attackers to obtain ...)
- - jspwiki 2.5.139-1 (medium; bug #445477)
+ - jspwiki 2.5.139-1 (unimportant; bug #445477)
[sarge] - jspwiki <no-dsa> (Contrib not supported)
CVE-2007-5118 (Unspecified vulnerability in the HID (Human Interface Device) class ...)
NOT-FOR-US: Solaris
More information about the Secure-testing-commits
mailing list