[Secure-testing-commits] r10821 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Mon Dec 29 02:27:51 UTC 2008
Author: jmm-guest
Date: 2008-12-29 02:27:50 +0000 (Mon, 29 Dec 2008)
New Revision: 10821
Modified:
data/CVE/list
Log:
more no-dsa/unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-29 02:16:51 UTC (rev 10820)
+++ data/CVE/list 2008-12-29 02:27:50 UTC (rev 10821)
@@ -1954,7 +1954,8 @@
NOTE: by default this file doesnt containt sensitive information and administrator
NOTE: changing this should ensure on its own that the mode is secure
CVE-2008-4869 (FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers ...)
- - ffmpeg-debian <unfixed> (bug #504977)
+ - ffmpeg-debian <unfixed> (unimportant; bug #504977)
+ NOTE: A regular bug, but hardly a security issue
- kino 1.0.0-1
[etch] - kino <not-affected> (Does not ship ffmpeg)
- gstreamer0.10-ffmpeg 0.10.3-2
@@ -3617,7 +3618,9 @@
NOT-FOR-US: IntegraMOD
CVE-2008-4182 (Cross-site scripting (XSS) vulnerability in imp/test.php in Horde ...)
- turba2 2.2.1-2 (bug #500114; low)
+ [etch] - turba2 <no-dsa> (Minor issue)
- imp4 4.2-3 (bug #500553; low)
+ [etch] - imp4 <no-dsa> (Minor issue)
CVE-2008-4181 (Directory traversal vulnerability in includes/xml.php in the Netenberg ...)
NOT-FOR-US: Netenberg Fantastico De Luxe module for cPanel
CVE-2008-4180 (Unspecified vulnerability in db.php in NooMS 1.1 allows remote ...)
More information about the Secure-testing-commits
mailing list