[Secure-testing-commits] r10372 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Wed Nov 12 09:14:11 UTC 2008 

Author: joeyh
Date: 2008-11-12 09:14:10 +0000 (Wed, 12 Nov 2008)
New Revision: 10372

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-11-12 03:17:23 UTC (rev 10371)
+++ data/CVE/list	2008-11-12 09:14:10 UTC (rev 10372)
@@ -55,7 +55,7 @@
 	RESERVED
 CVE-2008-4989 [gnutls man in the middle attack for certificate validation]
 	RESERVED
-       - gnutls26 2.4.2-2
+	- gnutls26 2.4.2-2
 CVE-2008-4963 (Unspecified vulnerability in the VLAN Trunking Protocol (VTP) ...)
 	NOT-FOR-US: Cisco IOS and CatOS
 CVE-2008-4962
@@ -205,14 +205,14 @@
 	- dovecot <not-affected> (Vulnerable code not present prior to 1.1.4)
 	TODO: check again if >= 1.1.4 gets uploaded
 CVE-2008-XXXX [GeSHi: Unspecified Code Execution Vulnerability]
-        - geshi 1.0.8.1-1 (bug #504445)
-        NOTE: http://comments.gmane.org/gmane.comp.security.oss.general/1152
-        [lenny] - geshi <no-dsa> (Should be sanitised from the app using geshi)
-        [etch] - geshi <no-dsa> (Should be sanitised from the app using geshi)
-        - dokuwiki 0.0.20080505-3.1 (unimportant; bug #504682)
-        NOTE: DokuWiki passes a static string to $path parameter
-        - pgfouine 1.0-1.1 (unimportant; bug #504681)
-        NOTE: pgfouine too does not override default language files path
+	- geshi 1.0.8.1-1 (bug #504445)
+	NOTE: http://comments.gmane.org/gmane.comp.security.oss.general/1152
+	[lenny] - geshi <no-dsa> (Should be sanitised from the app using geshi)
+	[etch] - geshi <no-dsa> (Should be sanitised from the app using geshi)
+	- dokuwiki 0.0.20080505-3.1 (unimportant; bug #504682)
+	NOTE: DokuWiki passes a static string to $path parameter
+	- pgfouine 1.0-1.1 (unimportant; bug #504681)
+	NOTE: pgfouine too does not override default language files path
 CVE-2008-6432
 	REJECTED
 CVE-2008-4878 (Unrestricted file upload vulnerability in the &quot;Add Image Macro&quot; ...)
@@ -9304,7 +9304,7 @@
 	- imagemagick 7:6.2.4.5.dfsg1-1
 CVE-2008-1096 (The load_tile function in the XCF coder in coders/xcf.c in (1) ...)
 	- imagemagick 7:6.3.7.9.dfsg1-2.1 (medium; bug #414370)
-        [lenny] - imagemagick 7:6.3.7.9.dfsg1-2.1+lenny1
+	[lenny] - imagemagick 7:6.3.7.9.dfsg1-2.1+lenny1
 	- graphicsmagick 1.1.11-3.2 (medium; bug #414370)
 CVE-2008-1095 (Unspecified vulnerability in the Internet Protocol (IP) implementation ...)
 	NOT-FOR-US: Sun Solaris

More information about the Secure-testing-commits mailing list