[Secure-testing-commits] r12219 - data/CVE
Nico Golde
nion at alioth.debian.org
Mon Jun 29 08:57:27 UTC 2009
Author: nion
Date: 2009-06-29 08:57:24 +0000 (Mon, 29 Jun 2009)
New Revision: 12219
Modified:
data/CVE/list
Log:
fixes in r2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-06-28 18:51:17 UTC (rev 12218)
+++ data/CVE/list 2009-06-29 08:57:24 UTC (rev 12219)
@@ -1600,8 +1600,7 @@
NOT-FOR-US: DFLabs
CVE-2008-6792 (system-tools-backends before 2.6.0-1ubuntu1.1 in Ubuntu 8.10, as used ...)
- system-tools-backends 2.6.0-6.1 (low; bug #527952)
- [lenny] - system-tools-backends <no-dsa> (Minor issue, scheduled for next point update)
- TODO: add after r2 [lenny] - system-tools-backends 2.6.0-2lenny3
+ [lenny] - system-tools-backends 2.6.0-2lenny3
[etch] - system-tools-backends <not-affected> (SHA was added to crypt(3) post-etch)
CVE-2009-1581 (functions/mime.php in SquirrelMail before 1.4.18 does not protect the ...)
{DSA-1802-1}
@@ -3025,11 +3024,10 @@
CVE-2009-1215 (Race condition in GNU screen 4.0.3 allows local users to create or ...)
- screen 4.0.3-13 (low; bug #521123)
[etch] - screen <not-affected> (etch version predates #433338)
- [lenny] - screen <no-dsa> (Minor issue)
- TODO: add after r2 [lenny] - screen 4.0.3-11+lenny1
+ [lenny] - screen 4.0.3-11+lenny1
CVE-2009-1214 (GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with ...)
- screen 4.0.3-13 (unimportant; bug #521123)
- TODO: add after r2 [lenny] - screen 4.0.3-11+lenny1
+ [lenny] - screen 4.0.3-11+lenny1
NOTE: documented behaviour "or the public accessible screen-exchange", see man screen
CVE-2009-1213 (Cross-site request forgery (CSRF) vulnerability in attachment.cgi in ...)
- bugzilla <unfixed> (low; bug #514143)
More information about the Secure-testing-commits
mailing list