[Secure-testing-commits] r9807 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Sat Sep 13 09:58:27 UTC 2008


Author: thijs
Date: 2008-09-13 09:58:25 +0000 (Sat, 13 Sep 2008)
New Revision: 9807

Modified:
   data/CVE/list
Log:
two bugs filed by M Gilbert


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-09-12 16:45:34 UTC (rev 9806)
+++ data/CVE/list	2008-09-13 09:58:25 UTC (rev 9807)
@@ -1193,8 +1193,9 @@
 	TODO: check
 CVE-2008-3530 (sys/netinet6/icmp6.c in the kernel in FreeBSD 6.3 through 7.1 does not ...)
 	TODO: check
-CVE-2008-3529
+CVE-2008-3529 [libxml long entity names]
 	RESERVED
+	- libxml2 <unfixed> (bug #498768)
 CVE-2008-3528
 	RESERVED
 CVE-2008-3527
@@ -1844,9 +1845,8 @@
 CVE-2008-3231 (xine before 1.1.5 allows user-assisted attackers to cause a denial of ...)
 	- xine-lib 1.1.14-2 (bug #492870; low)
 CVE-2008-3230 (The ffmpeg lavf demuxer allows user-assisted attackers to cause a ...)
-	- ffmpeg-debian <unfixed>
+	- ffmpeg-debian <unfixed> (low; bug #498764)
 	- ffmpeg <removed>
-	TODO: report bug
 CVE-2008-3228 (Joomla! before 1.5.4 does not configure .htaccess to apply certain ...)
 	- joomla <itp> (bug #326398)
 CVE-2008-3227 (Unspecified vulnerability in Joomla! before 1.5.4 has unknown impact ...)




More information about the Secure-testing-commits mailing list