[Secure-testing-commits] r12685 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Aug 26 18:15:19 UTC 2009


Author: jmm-guest
Date: 2009-08-26 18:15:19 +0000 (Wed, 26 Aug 2009)
New Revision: 12685

Modified:
   data/CVE/list
Log:
pidgin for spu


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-26 15:38:04 UTC (rev 12684)
+++ data/CVE/list	2009-08-26 18:15:19 UTC (rev 12685)
@@ -205,13 +205,13 @@
 CVE-2009-XXXX [pidgin does not honour SSL/TLS]
 	- pidgin 2.6.1-1 (low; bug #542891)
 	[lenny] - pidgin <no-dsa> (Minor issue)
-	TODO: Check gaim
+        TODO: next point update: [lenny] - pidgin_2.4.3-4lenny4
+	NOTE: gaim nof affected, it never claimed to support TLS/SSL
 	NOTE: http://developer.pidgin.im/ticket/8131
 	NOTE: http://developer.pidgin.im/viewmtn/revision/diff/312e056d702d29379ea61aea9d27765f127bc888/with/55897c4ce0787edc1e7721b7f4a9b5cbc8357279
 	NOTE: Requested CVE id via oss-security
 CVE-2009-2962
 	REJECTED
-	NOT-FOR-US: duplicate of CVE-2009-2692
 CVE-2009-2925 (Directory traversal vulnerability in DJcalendar.cgi in DJCalendar ...)
 	NOT-FOR-US: DJCalendar
 CVE-2009-2924 (Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 ...)




More information about the Secure-testing-commits mailing list