[Secure-testing-commits] r7374 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Thu Nov 22 22:13:46 UTC 2007 

Author: jmm-guest
Date: 2007-11-22 22:13:46 +0000 (Thu, 22 Nov 2007)
New Revision: 7374

Modified:
   data/CVE/list
Log:
glib/pcre unimportant unimportant since only the udeb is affected


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-11-22 21:15:56 UTC (rev 7373)
+++ data/CVE/list	2007-11-22 22:13:46 UTC (rev 7374)
@@ -3824,15 +3824,18 @@
 CVE-2007-4768 (Heap-based buffer overflow in Perl-Compatible Regular Expression ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-4767 (Perl-Compatible Regular Expression (PCRE) library before 7.3 does not ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-4766 (Multiple integer overflows in Perl-Compatible Regular Expression ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-4765
 	RESERVED
 CVE-2007-XXXX [wordpress: Users without unfiltered_html capability can post arbitrary html]
@@ -11182,19 +11185,23 @@
 CVE-2007-1662 (Perl-Compatible Regular Expression (PCRE) library before 7.3 reads ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-1661 (Perl-Compatible Regular Expression (PCRE) library before 7.3 ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-1660 (Perl-Compatible Regular Expression (PCRE) library before 7.3 does not ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-1659 (Perl-Compatible Regular Expression (PCRE) library before 7.3 allows ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1
-	- glib2.0 2.14.3-1
+	- glib2.0 2.14.3-1 (unimportant)
+	NOTE: glib only embeds pcre in the udeb, no attack vector
 CVE-2007-1658 (Windows Mail in Microsoft Windows Vista might allow user-assisted ...)
 	NOT-FOR-US: Microsoft
 CVE-2007-1657 (Stack-based buffer overflow in the file_compress function in minigzip ...)

More information about the Secure-testing-commits mailing list