[Secure-testing-commits] r10823 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Mon Dec 29 09:14:14 UTC 2008 

Author: joeyh
Date: 2008-12-29 09:14:13 +0000 (Mon, 29 Dec 2008)
New Revision: 10823

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-12-29 08:16:18 UTC (rev 10822)
+++ data/CVE/list	2008-12-29 09:14:13 UTC (rev 10823)
@@ -27,10 +27,10 @@
 	NOT-FOR-US: Iltaweb Alisveris Sistemi
 CVE-2008-5704 (src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might ...)
 	- gpsdrive <unfixed> (low; bug #508597)
-        [etch] - gpsdrive <no-dsa> (Minor issue)
+	[etch] - gpsdrive <no-dsa> (Minor issue)
 CVE-2008-5703 (gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to ...)
 	- gpsdrive <unfixed> (low; bug #508597)
-        [etch] - gpsdrive <no-dsa> (Minor issue)
+	[etch] - gpsdrive <no-dsa> (Minor issue)
 CVE-2008-5702 (Buffer underflow in the ibwdt_ioctl function in ...)
 	TODO: check
 CVE-2008-5701 (Array index error in arch/mips/kernel/scall64-o32.S in the Linux ...)
@@ -1955,7 +1955,7 @@
 	NOTE: changing this should ensure on its own that the mode is secure
 CVE-2008-4869 (FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers ...)
 	- ffmpeg-debian <unfixed> (unimportant; bug #504977)
-        NOTE: A regular bug, but hardly a security issue
+	NOTE: A regular bug, but hardly a security issue
 	- kino 1.0.0-1
 	[etch] - kino <not-affected> (Does not ship ffmpeg)
 	- gstreamer0.10-ffmpeg 0.10.3-2
@@ -1987,7 +1987,7 @@
 	[etch] - gstreamer0.10-ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2008-4865 (Untrusted search path vulnerability in valgrind allows local users to ...)
 	- valgrind 1:3.3.1-3 (unimportant; bug #507312)
-        NOTE: That's hardly an issue
+	NOTE: That's hardly an issue
 CVE-2008-4864 (Multiple integer overflows in imageop.c in the imageop module in ...)
 	- python2.5 2.5.2-12 (bug #504619)
 	- python2.4 2.4.5-6 (bug #504620)
@@ -3618,9 +3618,9 @@
 	NOT-FOR-US: IntegraMOD
 CVE-2008-4182 (Cross-site scripting (XSS) vulnerability in imp/test.php in Horde ...)
 	- turba2 2.2.1-2 (bug #500114; low)
-        [etch] - turba2 <no-dsa> (Minor issue)
+	[etch] - turba2 <no-dsa> (Minor issue)
 	- imp4 4.2-3 (bug #500553; low)
-        [etch] - imp4 <no-dsa> (Minor issue)
+	[etch] - imp4 <no-dsa> (Minor issue)
 CVE-2008-4181 (Directory traversal vulnerability in includes/xml.php in the Netenberg ...)
 	NOT-FOR-US: Netenberg Fantastico De Luxe module for cPanel
 CVE-2008-4180 (Unspecified vulnerability in db.php in NooMS 1.1 allows remote ...)
@@ -7978,6 +7978,7 @@
 CVE-2008-2384
 	RESERVED
 CVE-2008-2383 [xterm code execution through DECRQSS escape sequence]
+	RESERVED
 	- xterm <unfixed> (medium; bug #510030)
 CVE-2008-2382 (The protocol_client_msg function in vnc.c in the VNC server in (1) ...)
 	- qemu 0.9.1-9

More information about the Secure-testing-commits mailing list