[Secure-testing-commits] r9386 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Mon Jul 21 17:36:18 UTC 2008
Author: jmm-guest
Date: 2008-07-21 17:36:17 +0000 (Mon, 21 Jul 2008)
New Revision: 9386
Modified:
data/CVE/list
data/package-tags
data/spu-candidates.txt
Log:
new issue
no-dsas
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-07-21 17:29:45 UTC (rev 9385)
+++ data/CVE/list 2008-07-21 17:36:17 UTC (rev 9386)
@@ -1,3 +1,5 @@
+CVE-2008-XXXX [libfilesys-smbclient-perl: Missing input sanitising]
+ - libfilesys-smbclient-perl <unfixed> (medium)
CVE-2008-XXXX [mantis multiple issues]
- mantis 1.1.2+dfsg-1 (low)
NOTE: http://www.mantisbt.org/bugs/changelog_page.php
@@ -6,6 +8,7 @@
NOTE: 0008976 remote code execution only possible with valid administrator account
CVE-2008-3196 [out of bound access]
- byacc <unfixed> (low; bug #491182)
+ [etch] - byacc <no-dsa> (Minor issue)
CVE-2008-XXXX [libetpan NULL deref]
- libetpan 0.54-3 (low)
[etch] - libetpan <no-dsa> (Minor issue)
@@ -282,6 +285,7 @@
RESERVED
CVE-2008-3216 [projectl prone to symlink attack]
- projectl 1.001.dfsg1-2 (low; bug #489988)
+ [etch] - projectl <no-dsa> (Minor issue)
CVE-2008-3083 (SQL injection vulnerability in Brightcode Weblinks ...)
NOT-FOR-US: com_brightweblinks omponent for Joomla!
CVE-2008-3082 (Cross-site scripting (XSS) vulnerability in ...)
@@ -2010,6 +2014,7 @@
NOT-FOR-US: Mac OS X
CVE-2008-2310 (Format string vulnerability in c++filt in Apple Mac OS X 10.5 before ...)
- binutils 2.18.1~cvs20080103-1 (low)
+ [etch] - binutils <no-dsa> (Minor issue)
CVE-2008-2309 (Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X ...)
NOT-FOR-US: CoreTypes in Apple Mac OS X
CVE-2008-2308 (Unspecified vulnerability in Alias Manager in Apple Mac OS X 10.5.1 ...)
Modified: data/package-tags
===================================================================
--- data/package-tags 2008-07-21 17:29:45 UTC (rev 9385)
+++ data/package-tags 2008-07-21 17:36:17 UTC (rev 9386)
@@ -4,3 +4,5 @@
[etch] kfreebsd-5 <unsupported> (FreeBSD not yet supported)
[lenny] kfreebsd-6 <unsupported> (FreeBSD not yet supported)
[lenny] kfreebsd-7 <unsupported> (FreeBSD not yet supported)
+
+
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2008-07-21 17:29:45 UTC (rev 9385)
+++ data/spu-candidates.txt 2008-07-21 17:36:17 UTC (rev 9386)
@@ -39,6 +39,11 @@
--
+byacc (CVE-2008-3196)
+#491182
+
+--
+
bzip2 (CVE-2008-1372)
#471670
Maintainer has been notified
More information about the Secure-testing-commits
mailing list