[Secure-testing-commits] r9962 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Fri Oct 3 12:25:21 UTC 2008


Author: nion
Date: 2008-10-03 12:25:19 +0000 (Fri, 03 Oct 2008)
New Revision: 9962

Modified:
   data/CVE/list
Log:
new jasper issues (CVE-2008-352[0-2])

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-03 11:50:55 UTC (rev 9961)
+++ data/CVE/list	2008-10-03 12:25:19 UTC (rev 9962)
@@ -2101,11 +2101,11 @@
 CVE-2008-3523
 	RESERVED
 CVE-2008-3522 (Buffer overflow in the jas_stream_printf function in ...)
-	- jasper <unfixed>
+	- jasper <unfixed> (medium; bug #501021)
 CVE-2008-3521 (The jas_stream_tmpfile function in libjasper/base/jas_stream.c in ...)
-	- jasper <unfixed>
+	- jasper <unfixed> (unimportant; bug #501021)
 CVE-2008-3520 (Multiple integer overflows in JasPer 1.900.1 might allow ...)
-	- jasper <unfixed>
+	- jasper <unfixed> (medium; bug #501021)
 CVE-2008-3519 (The default configuration of the JBossAs component in Red Hat JBoss ...)
 	- jbossas4 <not-affected> (configuration not yet included in Debian package)
 CVE-2008-3518




More information about the Secure-testing-commits mailing list