[Secure-testing-commits] r11646 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Sat Apr 18 11:02:42 UTC 2009
Author: thijs
Date: 2009-04-18 11:02:41 +0000 (Sat, 18 Apr 2009)
New Revision: 11646
Modified:
data/CVE/list
Log:
apt and slumn-llnl issues
apt is also an ABI transition so we may need to do something for squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-17 21:14:13 UTC (rev 11645)
+++ data/CVE/list 2009-04-18 11:02:41 UTC (rev 11646)
@@ -1,3 +1,5 @@
+CVE-2009-XXXX [slurm-llnl doesn't drop supplementary groups]
+ - slumn-llnl 1.3.15-1
CVE-2009-1330 (Stack-based buffer overflow in Easy RM to MP3 Converter allows remote ...)
TODO: check
CVE-2009-1329 (Stack-based buffer overflow in Mini-stream Shadow Stream Recorder ...)
@@ -59,7 +61,7 @@
CVE-2009-1301 (Integer signedness error in the store_id3_text function in the ID3v2 ...)
TODO: check
CVE-2009-1300 (apt 0.7.20 does not check when the date command returns an "invalid ...)
- TODO: check
+ - apt 0.7.21 (bug #523213)
CVE-2008-6726 (Multiple directory traversal vulnerabilities in CMScout 2.06, when ...)
TODO: check
CVE-2008-6725 (Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote ...)
More information about the Secure-testing-commits
mailing list