[Secure-testing-commits] r10542 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Sat Nov 29 23:21:28 UTC 2008
Author: jmm-guest
Date: 2008-11-29 23:21:28 +0000 (Sat, 29 Nov 2008)
New Revision: 10542
Modified:
data/CVE/list
Log:
* re-no-dsa blender issue, scheduled for point update
* ltp no-dsa
* the lynx entry is wrong: In Etch there are two source
packages, lynx and lynx-cur. I've verified that stock
lynx is not affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-29 23:18:54 UTC (rev 10541)
+++ data/CVE/list 2008-11-29 23:21:28 UTC (rev 10542)
@@ -254,6 +254,7 @@
NOTE: unsafe code is in example script
CVE-2008-5145 (ltpmenu in ltp 20060918 allows local users to overwrite arbitrary ...)
- ltp <unfixed> (bug #506272)
+ [etch] - ltp <no-dsa> (Minor issue)
NOTE: this is not the same as CVE-2008-4969
CVE-2008-5144 (nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local ...)
- nvidia-cg-toolkit <unfixed> (unimportant)
@@ -862,7 +863,9 @@
- python2.4 2.4.5-6 (bug #504620)
CVE-2008-4863 (Untrusted search path vulnerability in BPY_interface in Blender 2.46 ...)
- blender 2.46+dfsg-5 (bug #503632; low)
- [etch] - blender 2.42a-8
+ [etch] - blender <no-dsa> (Minor issue)
+ TODO: [etch] - blender 2.42a-8
+ NOTE: Scheduled for r6
CVE-2008-4862
RESERVED
CVE-2008-4861
@@ -1154,7 +1157,8 @@
CVE-2008-4740 (Directory traversal vulnerability in templater.php in the ZZ_Templater ...)
NOT-FOR-US: ZZ_Templater module in TinyCMS
CVE-2006-7234 (Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows ...)
- - lynx 2.8.7dev4-1 (low)
+ - lynx-cur 2.8.7dev4-1 (low)
+ - lynx <not-affected> (Doesn't include the current directory in the search path)
CVE-2008-4748 (Format string vulnerability in the URI handler in KVirc 3.4.0, when ...)
- kvirc 2:3.4.0-3 (bug #503401)
CVE-2008-XXXX [balazar3: insecure temp file handling]
More information about the Secure-testing-commits
mailing list