[Secure-testing-commits] r7890 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sun Jan 13 00:19:00 UTC 2008
Author: nion
Date: 2008-01-13 00:18:59 +0000 (Sun, 13 Jan 2008)
New Revision: 7890
Modified:
data/CVE/list
Log:
reopening CVE-2007-5824, only partially fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-01-12 22:11:47 UTC (rev 7889)
+++ data/CVE/list 2008-01-13 00:18:59 UTC (rev 7890)
@@ -2560,7 +2560,8 @@
CVE-2007-5825 (Format string vulnerability in the ws_addarg function in webserver.c ...)
- mt-daapd 0.9~r1696-1 (bug #459961)
CVE-2007-5824 (webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier ...)
- - mt-daapd 0.9~r1696-1 (bug #459961)
+ - mt-daapd <unfixed> (bug #459961)
+ NOTE: only partially fixed, does still segfault on lines without :
CVE-2007-5823 (Directory traversal vulnerability in forum.php in Ben Ng Scribe 0.2 ...)
NOT-FOR-US: Ben Ng Scribe
CVE-2007-5822 (Direct static code injection vulnerability in forum.php in Ben Ng ...)
More information about the Secure-testing-commits
mailing list