[Secure-testing-commits] r9992 - in data: CVE NMU
nion at alioth.debian.org
nion at alioth.debian.org
Sat Oct 4 10:44:32 UTC 2008
Author: nion
Date: 2008-10-04 10:44:30 +0000 (Sat, 04 Oct 2008)
New Revision: 9992
Modified:
data/CVE/list
data/NMU/list
Log:
CVE-2008-4297 fixed in mercurial 1.0.1-5.1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-10-04 10:37:54 UTC (rev 9991)
+++ data/CVE/list 2008-10-04 10:44:30 UTC (rev 9992)
@@ -293,7 +293,7 @@
CVE-2008-4299 (A certain ActiveX control in the Microsoft Internet Authentication ...)
NOT-FOR-US: Microsoft
CVE-2008-4297 (Mercurial before 1.0.2 does not enforce the allowpull permission ...)
- - mercurial <unfixed> (low; bug #500781)
+ - mercurial 1.0.1-5.1 (low; bug #500781)
NOTE: the package doesnt install this script by default but ships it with the examples
CVE-2008-4296 (The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its ...)
NOT-FOR-US: Cisco Linksys WRT350N
Modified: data/NMU/list
===================================================================
--- data/NMU/list 2008-10-04 10:37:54 UTC (rev 9991)
+++ data/NMU/list 2008-10-04 10:44:30 UTC (rev 9992)
@@ -123,3 +123,4 @@
2008-09-11 gmanedit 0.4.1-1.1
2008-09-26 faad2 2.6.1-3.1
2008-10-02 ssmtp 2.62-1.1
+2008-10-04 mercurial 1.0.1-5.1
More information about the Secure-testing-commits
mailing list