[Secure-testing-commits] r9640 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Sun Aug 24 21:14:13 UTC 2008 

Author: joeyh
Date: 2008-08-24 21:14:12 +0000 (Sun, 24 Aug 2008)
New Revision: 9640

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-08-24 21:13:49 UTC (rev 9639)
+++ data/CVE/list	2008-08-24 21:14:12 UTC (rev 9640)
@@ -162,9 +162,9 @@
 	NOT-FOR-US: Oracle
 CVE-2008-3699 (The MagnatuneBrowser::listDownloadComplete function in ...)
 	- amarok 1.4.10-1 (unimportant; bug #494765)
-        NOTE: The code in question doesn't dereference the symlink, tested with Etch
-        NOTE: and Lenny. Given that it only takes a minute to test this, it's surprising
-        NOTE: that at least one vendor issued an advisory and upstream pushed a new release...
+	NOTE: The code in question doesn't dereference the symlink, tested with Etch
+	NOTE: and Lenny. Given that it only takes a minute to test this, it's surprising
+	NOTE: that at least one vendor issued an advisory and upstream pushed a new release...
 CVE-2008-3740 [drupal XSS]
 	RESERVED
 	{DTSA-156-1}
@@ -234,7 +234,7 @@
 	NOTE: attacker needs to be authenticated, see https://bugzilla.redhat.com/show_bug.cgi?id=456660
 CVE-2008-3651 (Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools ...)
 	- ipsec-tools 1:0.7.1-1 (low)
-        [etch] - ipsec-tools <no-dsa> (Minor issue)
+	[etch] - ipsec-tools <no-dsa> (Minor issue)
 CVE-2008-3650 (Multiple unspecified vulnerabilities in Horde Groupware Webmail before ...)
 	- horde3 3.2.1+debian0-1 (low; bug #495332)
 	- turba2 2.2.1-1
@@ -473,13 +473,13 @@
 CVE-2008-3535 (Off-by-one error in the iov_iter_advance function in mm/filemap.c in ...)
 	- linux-2.6 2.6.26-2
 	- linux-2.6.24 <unfixed>
-        NOTE: 94ad374a0751f40d25e22e036c37f7263569d24c
-        NOTE: Fixed in 2.6.25.14 and 2.6.26.1
+	NOTE: 94ad374a0751f40d25e22e036c37f7263569d24c
+	NOTE: Fixed in 2.6.25.14 and 2.6.26.1
 CVE-2008-3534 (The shmem_delete_inode function in mm/shmem.c in the tmpfs ...)
 	- linux-2.6.24 <unfixed>
 	- linux-2.6 2.6.26-2
-        NOTE: 14fcc23fdc78e9d32372553ccf21758a9bd56fa1
-        NOTE: Fixed in 2.6.25.14 and 2.6.26.1
+	NOTE: 14fcc23fdc78e9d32372553ccf21758a9bd56fa1
+	NOTE: Fixed in 2.6.25.14 and 2.6.26.1
 CVE-2008-3533 (Format string vulnerability in the window_error function in ...)
 	{DTSA-154-1}
 	- yelp 2.22.1-4 (low)

More information about the Secure-testing-commits mailing list