[Secure-testing-commits] r10818 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Sun Dec 28 20:16:45 UTC 2008
Author: jmm-guest
Date: 2008-12-28 20:16:44 +0000 (Sun, 28 Dec 2008)
New Revision: 10818
Modified:
data/CVE/list
Log:
- gpsdrive CVEfied
- konqueror browser crash
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-28 20:14:51 UTC (rev 10817)
+++ data/CVE/list 2008-12-28 20:16:44 UTC (rev 10818)
@@ -13,7 +13,8 @@
CVE-2008-5713 (The __qdisc_run function in net/sched/sch_generic.c in the Linux ...)
TODO: check
CVE-2008-5712 (The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to ...)
- TODO: check
+ - kdebase <unfixed> (unimportant)
+ NOTE: Browser crashes not treated as security issues
CVE-2008-5711 (Heap-based buffer overflow in the Facebook PhotoUploader ActiveX ...)
NOT-FOR-US: Facebook PhotoUploader ActiveX
CVE-2008-5710 (Multiple unspecified vulnerabilities in the web management interface ...)
@@ -25,9 +26,9 @@
CVE-2008-5707 (SQL injection vulnerability in urunler.asp in Iltaweb Alisveris ...)
NOT-FOR-US: Iltaweb Alisveris Sistemi
CVE-2008-5704 (src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might ...)
- TODO: check
+ - gpsdrive <unfixed> (bug #508597)
CVE-2008-5703 (gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to ...)
- TODO: check
+ - gpsdrive <unfixed> (bug #508597)
CVE-2008-5702 (Buffer underflow in the ibwdt_ioctl function in ...)
TODO: check
CVE-2008-5701 (Array index error in arch/mips/kernel/scall64-o32.S in the Linux ...)
@@ -596,8 +597,6 @@
- moodle 1.8.2.dfsg-2 (bug #508909)
[etch] - moodle <not-affected> (Vulnerable code not present)
NOTE: moodle recently copied roundcube's html2text due to their copy being non-free
-CVE-2008-XXXX [other symlink attack vectors in gpsdrive]
- - gpsdrive <unfixed> (bug #508597)
CVE-2008-5485
RESERVED
CVE-2008-5484
More information about the Secure-testing-commits
mailing list