[Secure-testing-commits] r9012 - in data: . CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Jun 7 12:44:45 UTC 2008
Author: nion
Date: 2008-06-07 12:44:44 +0000 (Sat, 07 Jun 2008)
New Revision: 9012
Modified:
data/CVE/list
data/embedded-code-copies
Log:
pan embeds uudeview, however not affected by CVE-2008-2266
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-06-07 09:12:39 UTC (rev 9011)
+++ data/CVE/list 2008-06-07 12:44:44 UTC (rev 9012)
@@ -818,6 +818,7 @@
CVE-2008-2266 (uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and ...)
- uudeview 0.5.20-3.1 (low; bug #480972)
- libconvert-uulib-perl <not-affected> (Code patched by libconver-uulib upstream to use mkstemp)
+ - pan <not-affected> (Code patched to use g_mkstemp)
NOTE: See CVE-2004-2265, where the problem occured as well
CVE-2008-2302 (Cross-site scripting (XSS) vulnerability in the login form in the ...)
- python-django 0.96.2-1 (bug #481164; low)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2008-06-07 09:12:39 UTC (rev 9011)
+++ data/embedded-code-copies 2008-06-07 12:44:44 UTC (rev 9012)
@@ -170,6 +170,7 @@
uudeview
- libconvert-uulib-perl <unfixed> (embed)
+ - pan <unfixed> (embed)
sqlite (not affected by security vulnerabilities so far)
- amarok <unfixed> (embed)
More information about the Secure-testing-commits
mailing list