[Secure-testing-commits] r10327 - data/CVE

[jmm-guest at alioth.debian.org]

Author: jmm-guest
Date: 2008-11-07 12:32:46 +0000 (Fri, 07 Nov 2008)
New Revision: 10327

Modified:
   data/CVE/list
Log:
virtualbox fixed
new issue only affects experimental


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-11-07 09:14:16 UTC (rev 10326)
+++ data/CVE/list	2008-11-07 12:32:46 UTC (rev 10327)
@@ -1,3 +1,5 @@
+CVE-2008-XXXX [yzis insecure temp file]
+	- yzis 1.0~alpha1-2 (bug #504680)
 CVE-2008-XXXX [delayed attacks via cookies]
 	- wordpress <unfixed> (bug #504771)
 CVE-2008-4990
@@ -344,7 +346,7 @@
 	- dia <unfixed> (low; bug #504251)
 	[etch] - dia <no-dsa> (Minor issue, only vulnerable when called from certain dir)
 CVE-2008-XXXX [virtualbox-ose: insecure temp file usage]
-	- virtualbox-ose <unfixed> (low; bug #504149)
+	- virtualbox-ose 1.6.6-dfsg-3 (low; bug #504149)
 CVE-2008-4801 (Heap-based buffer overflow in the Data Protection for SQL CAD service ...)
 	NOT-FOR-US: SQL CAD service
 CVE-2008-4800 (The DebugDiag ActiveX control in CrashHangExt.dll, possibly 1.0, in ...)