[Secure-testing-commits] r10333 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Sat Nov 8 07:44:09 UTC 2008
Author: white
Date: 2008-11-08 07:44:09 +0000 (Sat, 08 Nov 2008)
New Revision: 10333
Modified:
data/CVE/list
Log:
aegis issue(s) CVEified
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-08 06:58:48 UTC (rev 10332)
+++ data/CVE/list 2008-11-08 07:44:09 UTC (rev 10333)
@@ -25,7 +25,8 @@
- dpkg-cross <unfixed> (unimportant; bug #496413)
NOTE: executed under a chroot when a package failed to cross-build
CVE-2008-4938 (aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary ...)
- TODO: check
+ - aegis 4.24-3.1 (low; bug #496400)
+ [etch] - aegis <no-dsa> (Minor issue)
CVE-2008-4934 (The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the ...)
TODO: check
CVE-2008-4933 (Buffer overflow in the hfsplus_find_cat function in ...)
@@ -1223,12 +1224,6 @@
CVE-2008-4475 (ibackup 2.27 allows local users to overwrite arbitrary files via a ...)
- ibackup <removed> (low; bug #496432)
[etch] - ibackup <no-dsa> (Minor issues)
-CVE-2008-XXXX [aegis-web: insecure temp file]
- - aegis 4.24-3.1 (low; bug #496400)
- [etch] - aegis <no-dsa> (Minor issue)
-CVE-2008-XXXX [aegis: insecure temp files]
- - aegis <unfixed> (unimportant; bug #496402)
- NOTE: Only present in example scripts
CVE-2008-4401 (ActionScript in Adobe Flash Player 9.0.124.0 and earlier does not ...)
- flashplugin-nonfree 1.7.2
[etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
More information about the Secure-testing-commits
mailing list