[Secure-testing-commits] r13463 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Dec 6 09:15:08 UTC 2009
Author: joeyh
Date: 2009-12-06 09:14:54 +0000 (Sun, 06 Dec 2009)
New Revision: 13463
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-12-06 07:46:29 UTC (rev 13462)
+++ data/CVE/list 2009-12-06 09:14:54 UTC (rev 13463)
@@ -2024,7 +2024,7 @@
NOT-FOR-US: Oracle E-Business Suite
CVE-2009-3392 (Unspecified vulnerability in the Agile Engineering Data Management ...)
NOT-FOR-US: Oracle E-Business Suite
-CVE-2009-4193 [merkaartor merkaartor.log minor symlink attack]
+CVE-2009-4193 (Merkaartor 0.14 allows local users to append data to arbitrary files ...)
- merkaartor 0.14+svnfixes~20090912-2 (low; bug #548546)
[lenny] - merkaartor <not-affected> (vulnerable code not present)
NOTE: does not run as root so minor issue.
More information about the Secure-testing-commits
mailing list