[Secure-testing-commits] r11385 - data/CVE
fw at alioth.debian.org
fw at alioth.debian.org
Fri Mar 13 13:22:04 UTC 2009
Author: fw
Date: 2009-03-13 13:22:03 +0000 (Fri, 13 Mar 2009)
New Revision: 11385
Modified:
data/CVE/list
Log:
CVE-2009-0753: mldonkey not-affected in etch
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-03-13 11:19:18 UTC (rev 11384)
+++ data/CVE/list 2009-03-13 13:22:03 UTC (rev 11385)
@@ -977,6 +977,7 @@
NOTE: should a CVE be requested for this problem?
CVE-2009-0753 (Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 ...)
- mldonkey <unfixed> (bug #516829; medium)
+ [etch] - mldonkey <not-affected> (vulnerable code not present)
NOTE: daemon is run as non-root and can only be exploited via localhost
CVE-2009-0648 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
NOT-FOR-US: Falt4 CMS
More information about the Secure-testing-commits
mailing list