[Secure-testing-commits] r10501 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Fri Nov 28 19:14:27 UTC 2008
Author: jmm-guest
Date: 2008-11-28 19:14:26 +0000 (Fri, 28 Nov 2008)
New Revision: 10501
Modified:
data/CVE/list
Log:
ecryptfs-utils no-dsa
record two targeted lenny fixes
vbox CVEfied
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-28 18:43:21 UTC (rev 10500)
+++ data/CVE/list 2008-11-28 19:14:26 UTC (rev 10501)
@@ -138,6 +138,7 @@
- rails 2.1.0-6 (low)
CVE-2008-5188 (The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and ...)
- ecryptfs-utils 66-1 (low)
+ [lenny] - ecryptfs-utils <no-dsa> (Minor issue)
CVE-2008-5184 (The web interface (cgi-bin/admin.c) in CUPS before 1.3.8 uses the ...)
- cups 1.3.8-1
TODO: check if version in etch is affected
@@ -256,6 +257,7 @@
- jailer 0.4-15
CVE-2008-5138 (passwdehd in libpam-mount 0.43 allows local users to overwrite ...)
- libpam-mount 1.2+gitaa4791f-1 (low)
+ [lenny] - libpam-mount 0.44-1+lenny2
CVE-2008-5137 (tkman in tkman 2.2 allows local users to overwrite arbitrary files via ...)
- tkman <unfixed> (bug #506496)
CVE-2008-5136 (tkusr in tkusr 0.82 allows local users to overwrite arbitrary files ...)
@@ -991,7 +993,7 @@
CVE-2008-XXXX [dia: Python scripts load modules from current directory]
- dia 0.96.1-7.1 (low; bug #504251)
[etch] - dia <no-dsa> (Minor issue, only vulnerable when called from certain dir)
-CVE-2008-XXXX [virtualbox-ose: insecure temp file usage]
+CVE-2008-5256 [virtualbox-ose: insecure temp file usage]
- virtualbox-ose 1.6.6-dfsg-3 (low; bug #504149)
CVE-2008-4801 (Heap-based buffer overflow in the Data Protection for SQL CAD service ...)
NOT-FOR-US: SQL CAD service
@@ -1990,6 +1992,7 @@
CVE-2008-4965 (liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to overwrite ...)
{DTSA-177-1 DTSA-178-1}
- liquidsoap 0.3.8.1+2-2 (low; bug #496360)
+ [lenny] - liquidsoap 0.3.6-4+lenny1
CVE-2008-4966 (linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary ...)
- openswan <unfixed> (unimportant; bug #496376)
NOTE: Only unused packaging bits
More information about the Secure-testing-commits
mailing list