[Secure-testing-commits] r9117 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Sat Jun 21 17:27:59 UTC 2008
Author: white
Date: 2008-06-21 17:27:58 +0000 (Sat, 21 Jun 2008)
New Revision: 9117
Modified:
data/CVE/list
Log:
Add temp issue for perl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-06-20 21:14:13 UTC (rev 9116)
+++ data/CVE/list 2008-06-21 17:27:58 UTC (rev 9117)
@@ -1,3 +1,8 @@
+CVE-2008-XXXX [rmtree() function follows symlinks and changes permissions]
+ - perl <unfixed> (bug #487319; medium)
+ [etch] - perl <not-affected> (doesn't change link target permissions)
+ NOTE: affects other packages like debsums, see bugreport
+ NOTE: CVE id requested
CVE-2008-XXXX [tmsnc buffer overflow in UBX handling]
- tmsnc <unfixed> (low; bug #487222)
CVE-2008-2786 (Buffer overflow in Firefox 3.0 and 2.0.x has unknown impact and attack ...)
More information about the Secure-testing-commits
mailing list