[Secure-testing-commits] r6067 - data/CVE

[fw at alioth.debian.org]

Author: fw
Date: 2007-06-27 12:42:25 +0000 (Wed, 27 Jun 2007)
New Revision: 6067

Modified:
   data/CVE/list
Log:
CVE-2007-2442, CVE-2007-2443: krb5


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-06-27 12:38:20 UTC (rev 6066)
+++ data/CVE/list	2007-06-27 12:42:25 UTC (rev 6067)
@@ -2240,9 +2240,9 @@
 	{DSA-1291-2 DTSA-41-1}
 	- samba 3.0.25-1
 CVE-2007-2443 (Integer signedness error in the gssrpc__svcauth_unix function in ...)
-	TODO: check
+	- krb5 <unfixed> (bug #430787; medium)
 CVE-2007-2442 (The gssrpc__svcauth_gssapi function in the RPC library in MIT Kerberos ...)
-	TODO: check
+	- krb5 <unfixed> (bug #430787; high)
 CVE-2007-2441 (Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for ...)
 	NOT-FOR-US: Caucho Resin Professional
 CVE-2007-2440 (Directory traversal vulnerability in Caucho Resin Professional 3.1.0 ...)