[Secure-testing-commits] r10187 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Tue Oct 28 11:54:30 UTC 2008


Author: white
Date: 2008-10-28 11:54:29 +0000 (Tue, 28 Oct 2008)
New Revision: 10187

Modified:
   data/CVE/list
Log:
Add information to these Adobe Flash issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-28 09:13:46 UTC (rev 10186)
+++ data/CVE/list	2008-10-28 11:54:29 UTC (rev 10187)
@@ -426,7 +426,9 @@
 CVE-2008-4547 (Heap-based buffer overflow in the PdvrAtl.PdvrOcx.1 ActiveX control ...)
 	NOT-FOR-US: DVRHOST Web CMS
 CVE-2008-4546 (Adobe Flash Player 9.0.45.0, 9.0.112.0, 9.0.124.0, and 10.0.12.10 ...)
-	TODO: check
+	- flashplugin-nonfree <unfixed>
+	[etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
+	[lenny] - flashplugin-nonfree <no-dsa> (Contrib not supported)
 CVE-2008-4558 (Array index error in VLC media player 0.9.2 allows remote attackers to ...)
 	- vlc <not-affected> (medium; bug #502314)
 	TODO: only 0.9.0->0.9.2 are affected, check if newer upstream version is uploaded to unstable
@@ -731,7 +733,9 @@
 	- aegis <unfixed> (unimportant; bug #496402)
 	NOTE: Only present in example scripts
 CVE-2008-4401 (ActionScript in Adobe Flash Player 9.0.124.0 and earlier does not ...)
-	TODO: check
+	- flashplugin-nonfree 1.7.2
+	[etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
+	[lenny] - flashplugin-nonfree <no-dsa> (Contrib not supported)
 CVE-2008-4400 (Unspecified vulnerability in asdbapi.dll in CA ARCserve Backup ...)
 	NOT-FOR-US: CA ARCserve Backup
 CVE-2008-4399 (Unspecified vulnerability in the database engine service in ...)




More information about the Secure-testing-commits mailing list