[Secure-testing-commits] r9826 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Mon Sep 15 11:34:28 UTC 2008


Author: white
Date: 2008-09-15 11:34:26 +0000 (Mon, 15 Sep 2008)
New Revision: 9826

Modified:
   data/CVE/list
Log:
openoffice.org not affected

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-09-15 11:26:38 UTC (rev 9825)
+++ data/CVE/list	2008-09-15 11:34:26 UTC (rev 9826)
@@ -1731,7 +1731,10 @@
 CVE-2008-3283 (Multiple memory leaks in Red Hat Directory Server 7.1 before SP7, Red ...)
 	NOT-FOR-US: Red Hat Directory Server
 CVE-2008-3282 (Integer overflow in the rtl_allocateMemory function in ...)
-	TODO: check
+	- openoffice.org <not-affected> (openoffice in Debian does not use the custom allocations but g/malloc)
+	NOTE: see ooo-build/distro-configs/CommonLinux.conf.in, openoffice builds on Debian using
+	NOTE: --with-alloc=system which causes the build scripts to use the system allocators instead of the
+	NOTE: custom ones
 CVE-2008-3281 (libxml2 2.6.32 and earlier does not properly detect recursion during ...)
 	{DSA-1631-1 DTSA-158-1}
 	- libxml2 2.6.32.dfsg-3 (medium)




More information about the Secure-testing-commits mailing list