[Secure-testing-commits] r13654 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Sat Dec 26 11:33:09 UTC 2009


Author: jmm-guest
Date: 2009-12-26 11:33:05 +0000 (Sat, 26 Dec 2009)
New Revision: 13654

Modified:
   data/CVE/list
Log:
- acl issue doesn't affect etch
- texlive spu upload 


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-26 11:28:51 UTC (rev 13653)
+++ data/CVE/list	2009-12-26 11:33:05 UTC (rev 13654)
@@ -25,6 +25,7 @@
 	TODO: check
 CVE-2009-4411 (The (1) setfacl and (2) getfacl commands in XFS acl 2.2.47, when ...)
 	- acl <unfixed> (bug #499076)
+	[etch] - acl <not-affected> (Vulnerable code not present)
 	TODO: check
 CVE-2009-4409 (The (1) CHAP and (2) MS-CHAP-V2 authentication capabilities in the PPP ...)
 	TODO: check
@@ -9853,6 +9854,7 @@
 	- texlive-bin 2009-1 (low; bug #520920)
 	[etch] - texlive-bin <no-dsa> (Minor issue)
 	[lenny] - texlive-bin <no-dsa> (Minor issue)
+	TODO: next point release: [lenny] - texlive-bin 2007.dfsg.2-4+lenny2
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=492136
 CVE-2009-1283 (glFusion before 1.1.3 performs authentication with a user-provided ...)
 	NOT-FOR-US: glFusion




More information about the Secure-testing-commits mailing list