[Secure-testing-commits] r11911 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Sat May 16 19:22:18 UTC 2009
Author: jmm-guest
Date: 2009-05-16 19:22:18 +0000 (Sat, 16 May 2009)
New Revision: 11911
Modified:
data/CVE/list
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
cron no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-16 15:13:34 UTC (rev 11910)
+++ data/CVE/list 2009-05-16 19:22:18 UTC (rev 11911)
@@ -19,7 +19,9 @@
- eggdrop 1.6.19-1.2 (medium; bug #528778)
NOTE: CVE id request on oss-sec
CVE-2009-XXXX [cron: Incomplete fix for CVE-2006-2607 (setgid() and initgroups() not checked]
- - cron 3.0pl1-106 (medium; bug #528434)
+ - cron 3.0pl1-106 (low; bug #528434)
+ [lenny] - cron <no-dsa> (Minor issue)
+ [etch] - cron <no-dsa> (Minor issue)
CVE-2009-1628
RESERVED
CVE-2009-1627 (Stack-based buffer overflow in Streaming Download Project (SDP) ...)
Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt 2009-05-16 15:13:34 UTC (rev 11910)
+++ data/ospu-candidates.txt 2009-05-16 19:22:18 UTC (rev 11911)
@@ -125,8 +125,10 @@
notified maintainer
--
+
coccinelle
http://packages.qa.debian.org/c/coccinelle/news/20090502T001704Z.html
+
--
comix (CVE-2008-1568)
@@ -135,6 +137,11 @@
--
+cron: Incomplete fix for CVE-2006-2607 (setgid() and initgroups() not checked
+#528434
+
+--
+
cupsys (CVE-2008-5377)
--
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2009-05-16 15:13:34 UTC (rev 11910)
+++ data/spu-candidates.txt 2009-05-16 19:22:18 UTC (rev 11911)
@@ -27,6 +27,11 @@
--
+cron: Incomplete fix for CVE-2006-2607 (setgid() and initgroups() not checked
+#528434
+
+--
+
kvm 82-1 (CVE-2008-5714)
#509997
More information about the Secure-testing-commits
mailing list