[Secure-testing-commits] r8330 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Fri Mar 14 14:59:12 UTC 2008
Author: jmm-guest
Date: 2008-03-14 14:59:11 +0000 (Fri, 14 Mar 2008)
New Revision: 8330
Modified:
data/CVE/list
Log:
not-affected is used incorrectly, since earlier versions from oldstable
and stable are affected as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-03-14 13:01:06 UTC (rev 8329)
+++ data/CVE/list 2008-03-14 14:59:11 UTC (rev 8330)
@@ -1497,9 +1497,12 @@
CVE-2008-0598
RESERVED
CVE-2008-0597 (Use-after-free vulnerability in CUPS before 1.1.22, and possibly other ...)
- - cupsys <not-affected> (mimeDeleteType included since 1.2.x)
+ - cupsys 1.2
+ NOTE: (mimeDeleteType included since 1.2.x
CVE-2008-0596 (Memory leak in CUPS before 1.1.22, and possibly other versions, allows ...)
- - cupsys <not-affected> (version in unstable has better array handling and is not vulnerable, exact version unknown)
+ - cupsys 1.3.6
+ NOTE: version in unstable has better array handling and is not vulnerable, exact version unknown
+ TODO: validate exact fixed version
CVE-2008-0595 (dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes ...)
- dbus 1.1.20-1
CVE-2008-0594 (Mozilla Firefox before 2.0.0.12 does not always display a web forgery ...)
More information about the Secure-testing-commits
mailing list