[Secure-testing-commits] r6750 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Mon Oct 1 10:11:17 UTC 2007


Author: nion
Date: 2007-10-01 10:11:17 +0000 (Mon, 01 Oct 2007)
New Revision: 6750

Modified:
   data/CVE/list
Log:
CVE-2007-5019 unfixed but unimportant


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-01 06:44:17 UTC (rev 6749)
+++ data/CVE/list	2007-10-01 10:11:17 UTC (rev 6750)
@@ -235,7 +235,9 @@
 CVE-2007-XXXX [mimep insecure tempfile usage and insecure calls to LaTeX and dvips]
 	- mp 3.7.1-8
 CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in Java ...)
-	TODO: check
+	- sun-java6-jre <unfixed> (unimportant)
+	- sun-java5-jre <unfixed> (unimportant) 
+	NOTE: exploiting this would not work under Linux
 CVE-2007-5018 (Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote ...)
 	NOT-FOR-US: Pegasus Mail Mercury
 CVE-2007-5017 (Absolute path traversal vulnerability in a certain ActiveX control in ...)




More information about the Secure-testing-commits mailing list