[Secure-testing-commits] r7996 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Mon Jan 21 12:56:20 UTC 2008


Author: nion
Date: 2008-01-21 12:56:19 +0000 (Mon, 21 Jan 2008)
New Revision: 7996

Modified:
   data/CVE/list
Log:
new issue: CVE-2008-0295 (vlc)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-21 12:46:14 UTC (rev 7995)
+++ data/CVE/list	2008-01-21 12:56:19 UTC (rev 7996)
@@ -110,7 +110,8 @@
 CVE-2008-0296 (Heap-based buffer overflow in the libaccess_realrtsp plugin in ...)
 	- vlc <unfixed> (bug #461544; medium)
 CVE-2008-0295 (Heap-based buffer overflow in modules/access/rtsp/real_sdpplin.c in ...)
-	TODO: check
+	- vlc <unfixed> (bug #461544; medium)
+	NOTE: this does not affect xine-lib itself, its just vlc that ships a really old version of it
 CVE-2008-0294 (Unspecified vulnerability in the seat-locking implementation in ...)
 	NOT-FOR-US: FreeSeat
 CVE-2008-0293 (Unspecified vulnerability in cron.php in FreeSeat before 1.1.5d, when ...)




More information about the Secure-testing-commits mailing list