[Secure-testing-commits] r10420 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Wed Nov 19 09:14:15 UTC 2008


Author: joeyh
Date: 2008-11-19 09:14:15 +0000 (Wed, 19 Nov 2008)
New Revision: 10420

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-11-19 03:28:20 UTC (rev 10419)
+++ data/CVE/list	2008-11-19 09:14:15 UTC (rev 10420)
@@ -241,7 +241,7 @@
 	TODO: check
 CVE-2008-5010 (in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and ...)
 	NOT-FOR-US: in.dhcpd
-CVE-2008-5101 [OptiPNG BMP Reader Buffer Overflow]
+CVE-2008-5101 (Buffer overflow in the BMP reader in OptiPNG 0.6 and 0.6.1 allows ...)
 	- optipng 0.6.1.1-1 (bug #505399)
 	NOTE: This is SA32651
 CVE-2008-XXXX [tor: changing user does not clear supplementary group entries]
@@ -296,7 +296,7 @@
 	NOT-FOR-US:  LOCKON CO.,LTD. EC-CUBE
 CVE-2008-XXXX [yzis insecure temp file]
 	- yzis 1.0~alpha1-2 (bug #504680)
-CVE-2008-5113 [delayed attacks via cookies]
+CVE-2008-5113 (WordPress 2.6.3 relies on the REQUEST superglobal array in certain ...)
 	- wordpress 2.5.1-10 (bug #504771)
 CVE-2008-4990
 	RESERVED




More information about the Secure-testing-commits mailing list