[Secure-testing-commits] r9972 - data/CVE

stef-guest at alioth.debian.org stef-guest at alioth.debian.org
Fri Oct 3 18:42:45 UTC 2008


Author: stef-guest
Date: 2008-10-03 18:42:43 +0000 (Fri, 03 Oct 2008)
New Revision: 9972

Modified:
   data/CVE/list
Log:
hplip issues not in lenny/sid

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-03 18:11:57 UTC (rev 9971)
+++ data/CVE/list	2008-10-03 18:42:43 UTC (rev 9972)
@@ -3405,9 +3405,13 @@
 CVE-2008-2943 (Double free vulnerability in IBM Tivoli Directory Server (TDS) 6.1.0.0 ...)
 	NOT-FOR-US: IBM Tivoli Directory Server
 CVE-2008-2941 (The hpssd message parser in hpssd.py in HP Linux Imaging and Printing ...)
-	- hplip <unfixed> (bug #499842)
+	- hplip 2.8.6-1 (bug #499842)
+	NOTE: Does not affect current version in lenny, marking as fixed in current upstream release
+	NOTE: Etch is vulnerable.
 CVE-2008-2940 (The alert-mailing implementation in HP Linux Imaging and Printing ...)
-	- hplip <unfixed> (bug #499842)
+	- hplip 2.8.6-1 (bug #499842)
+	NOTE: Does not affect current version in lenny, marking as fixed in current upstream release
+	NOTE: Etch is vulnerable.
 CVE-2008-2939 (Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the ...)
 	- apache2 2.2.9-7 (low)
 	[etch] - apache2 <no-dsa> (minor issue; fix will be in 2.2.3-4+etch6)




More information about the Secure-testing-commits mailing list