[Secure-testing-commits] r9422 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Sat Jul 26 17:28:04 UTC 2008


Author: thijs
Date: 2008-07-26 17:28:03 +0000 (Sat, 26 Jul 2008)
New Revision: 9422

Modified:
   data/CVE/list
Log:
add etch r4 issues to tracker


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-07-26 17:09:54 UTC (rev 9421)
+++ data/CVE/list	2008-07-26 17:28:03 UTC (rev 9422)
@@ -1818,7 +1818,8 @@
 	NOT-FOR-US: FireFTP
 CVE-2008-2575 (cbrPager before 0.9.17 allows user-assisted remote attackers to ...)
 	- cbrpager 0.9.17-1 (low; bug #482853)
-	[etch] - cbrpager <no-dsa> (Minor issue)
+	[etch] - cbrpager 0.9.14-3+etch1
+	NOTE: Minor issue fixed in 4.0r4 point release
 CVE-2008-XXXX [resizing the monitor with xrandr can crash xscreensaver]
 	- xscreensaver 5.05-3 (unimportant; bug #482385)
 CVE-2008-2516 (pam_sm_authenticate in pam_pgsql.c in libpam-pgsql 0.6.3 does not ...)
@@ -2344,8 +2345,8 @@
 	NOTE: See CVE-2004-2265, where the problem occured as well
 CVE-2008-2302 (Cross-site scripting (XSS) vulnerability in the login form in the ...)
 	- python-django 0.96.2-1 (bug #481164; low)
-	[etch] - python-django <no-dsa> (Minor issue)
-	TODO: next point release: [etch] - python-django 0.95.1-1etch1
+	[etch] - python-django 0.95.1-1etch1
+	NOTE: Minor issue fixed in 4.0r4 point release
 CVE-2008-2162 (Cross-site scripting (XSS) vulnerability in SonicWall Email Security ...)
 	NOT-FOR-US: SonicWall Email Security
 CVE-2008-2161 (Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly ...)
@@ -12485,7 +12486,8 @@
 	NOT-FOR-US: HP-UX
 CVE-2007-5007 (Stack-based buffer overflow in the ir_fetch_seq function in balsa ...)
 	- balsa 2.3.20-1 (low)
-	[etch] - balsa <no-dsa> (Minor issue)
+	[etch] - balsa 2.3.13-3
+	NOTE: Minor issue fixed in 4.0r4 point release
 	[sarge] - balsa <no-dsa> (Minor issue)
 	NOTE: attacker needs to get the victim a prepared server to use
 CVE-2007-5006 (Multiple command handlers in CA (Computer Associates) BrightStor ...)
@@ -19328,7 +19330,8 @@
 	- proftpd 1.3.0-24 (low)
 	[sarge] - proftpd <no-dsa> (Minor issue)
 	- proftpd-dfsg 1.3.0-24 (low)
-	[etch] - proftpd-dfsg <no-dsa> (Minor issue)
+	[etch] - proftpd-dfsg 1.3.0-19etch1
+	NOTE: Minor issue Fixed in 4.0r4 point release
 CVE-2007-2164 (Konqueror 3.5.5 release 45.4 allows remote attackers to cause a denial ...)
 	- kdelibs <unfixed> (unimportant)
 	NOTE: Browser crashes are not treated as security problems




More information about the Secure-testing-commits mailing list