[Secure-testing-commits] r10124 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Sun Oct 19 20:28:55 UTC 2008
Author: jmm-guest
Date: 2008-10-19 20:28:53 +0000 (Sun, 19 Oct 2008)
New Revision: 10124
Modified:
data/CVE/list
Log:
- remove obsolete tsck, long replaced by debsecan
- flashplugin not supported
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-10-19 16:30:23 UTC (rev 10123)
+++ data/CVE/list 2008-10-19 20:28:53 UTC (rev 10124)
@@ -1700,6 +1700,7 @@
NOTE: System.setClipboard is not implemented (yet?) in gnash 0.8.3 and swfdec0.6 0.6.8
CVE-2008-3872 (Adobe Flash Player 8.0.39.0 and earlier, and 9.x up to 9.0.115.0, ...)
- flashplugin-nonfree 1:1.4
+ [etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
NOTE: automatically downloads latest update from adobe which is 9.0.124.0 currently
CVE-2008-3871
RESERVED
@@ -6957,9 +6958,11 @@
NOT-FOR-US: Adobe ColdFusion
CVE-2008-1655 (Unspecified vulnerability in Adobe Flash Player 9.0.115.0 and earlier, ...)
- flashplugin-nonfree 1:1.4
+ [etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
NOTE: Fix came from Adobe via new Adobe Flash Player, debian package didn't change
CVE-2008-1654 (Interaction error between Adobe Flash and multiple Universal Plug and ...)
- flashplugin-nonfree 1:1.4
+ [etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
CVE-2008-1653 (Directory traversal vulnerability in index.php in Sava's Link Manager ...)
NOT-FOR-US: Sava's Link Manager
CVE-2008-1652 (Directory traversal vulnerability in the _serve_request_multiple ...)
More information about the Secure-testing-commits
mailing list