[Secure-testing-commits] r10426 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Nov 19 19:45:45 UTC 2008
Author: nion
Date: 2008-11-19 19:45:45 +0000 (Wed, 19 Nov 2008)
New Revision: 10426
Modified:
data/CVE/list
Log:
fix srcpkg names
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-19 19:38:24 UTC (rev 10425)
+++ data/CVE/list 2008-11-19 19:45:45 UTC (rev 10426)
@@ -317,7 +317,7 @@
CVE-2008-4999 (Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to ...)
NOT-FOR-US: Nortel Networks UNIStim IP Phone
CVE-2008-4997 (** DISPUTED ** ...)
- - datafreedom-perl <unfixed> (unimportant; bug #496429)
+ - pilot-qof <unfixed> (unimportant; bug #496429)
CVE-2008-4996 (** DISPUTED ** ...)
- initramfs-tools <unfixed> (unimportant; bug #496386)
CVE-2008-4992 (The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and ...)
@@ -1222,7 +1222,7 @@
CVE-2008-4575 (Buffer overflow in the DoCommand function in jhead before 2.84 might ...)
- jhead 2.84-1 (bug #502353; low)
CVE-2008-4571 (Cross-site scripting (XSS) vulnerability in the LiveSearch module in ...)
- - plone3-site 3.0.4-1 (low)
+ - plone3 3.0.4-1 (low)
CVE-2008-4569 (SQL injection vulnerability in xlacomments.asp in XIGLA Software ...)
NOT-FOR-US: XIGLA Software Absolute Poll Manager
CVE-2008-4574 (SQL injection vulnerability in default.asp in Ayco Okul Portali allows ...)
@@ -1700,7 +1700,7 @@
{DTSA-177-1}
- liquidsoap 0.3.8.1+2-2 (low; bug #496360)
CVE-2008-4966 (linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary ...)
- - linux-patch-openswan <unfixed> (unimportant; bug #496376)
+ - openswan <unfixed> (unimportant; bug #496376)
NOTE: Only unused packaging bits
CVE-2008-4941 (arb-common 0.0 allows local users to overwrite arbitrary files via a ...)
- arb 0.0.20071207.1-5 (low; bug #496396)
@@ -2726,7 +2726,6 @@
NOT-FOR-US: DIC shop_v50
CVE-2008-3931 (javareconf in R 2.7.2 allows local users to overwrite arbitrary files ...)
- r-base-core-ra 1.1.1-2 (low; bug #496363)
- - r-base-core 2.7.2-1 (low; bug #496418)
- r-base 2.7.2-1 (low; bug #496418)
[etch] - r-base <no-dsa> (Minor issue)
[lenny] - r-base 2.7.1-1+lenny1
@@ -8394,7 +8393,7 @@
CVE-2008-1553 (Directory traversal vulnerability in mod.php in TopperMod 1.0 allows ...)
NOT-FOR-US: TopperMod
CVE-2008-1552 (The silc_pkcs1_decode function in the silccrypt library (silcpkcs1.c) ...)
- - libsilc 1.1.7-1 (low)
+ - silk-toolkit 1.1.7-1 (low)
- silc-client <not-affected> (links against libsilc)
NOTE: this can't result code execution but only in a crash as data_len - i always results
NOTE: in -1 and malloc will never succeed and thus not reaching any free
@@ -8659,7 +8658,7 @@
- dnsmasq 2.43-1 (medium; bug #490123)
- pdnsd 1.2.6-par-11 (bug #502275)
- python-dns 2.3.1-5 (low; bug #490217)
- - python-dnspython <unfixed> (low; bug #492465)
+ - dnspython <unfixed> (low; bug #492465)
- adns 1.4-2 (unimportant; bug #492698)
NOTE: adns is not suitable to use with untrusted responses, documented in README.Debian
- udns <unfixed> (bug #493599)
More information about the Secure-testing-commits
mailing list