[Secure-testing-commits] r6702 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Tue Sep 25 17:58:58 UTC 2007
Author: nion
Date: 2007-09-25 17:58:57 +0000 (Tue, 25 Sep 2007)
New Revision: 6702
Modified:
data/CVE/list
Log:
CVE-2004-2687 fixed in distcc 2.18.1-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-25 17:48:15 UTC (rev 6701)
+++ data/CVE/list 2007-09-25 17:58:57 UTC (rev 6702)
@@ -81,7 +81,8 @@
CVE-2007-5020 (Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows ...)
NOT-FOR-US: Acrobat Reader
CVE-2004-2687 (distcc 2.x, as used in XCode 1.5 and others, when not configured to ...)
- TODO: check
+ - distcc 2.18.1-1 (low)
+ NOTE: since 2.18.1-1 there is the --allow switch to control network access
CVE-2004-2686 (Directory traversal vulnerability in the vfs_getvfssw function in ...)
NOT-FOR-US: Solaris
CVE-2003-1339 (Stack-based buffer overflow in eZnet.exe, as used in eZ (a) ...)
More information about the Secure-testing-commits
mailing list