[Secure-testing-commits] r11915 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Mon May 18 15:45:14 UTC 2009


Author: gilbert-guest
Date: 2009-05-18 15:45:13 +0000 (Mon, 18 May 2009)
New Revision: 11915

Modified:
   data/CVE/list
Log:
upon further evaluation, tightvnc issue is specific to the windows code only


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-05-18 14:58:55 UTC (rev 11914)
+++ data/CVE/list	2009-05-18 15:45:13 UTC (rev 11915)
@@ -4669,8 +4669,8 @@
 CVE-2009-0389 (Multiple insecure method vulnerabilities in the Web On Windows (WOW) ...)
 	NOT-FOR-US: ActiveX
 CVE-2009-0388 (Multiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and ...)
-	- tightvnc 1.3.10 (low; bug #528204)
-	NOTE: i've looked at the patches and don't see why this would be considered windows-specific
+	- tightvnc <not-affected> (bug in the windows-specific client connection code)
+	NOTE: http://bugs.debian.org/528204 
 CVE-2009-0387 (Array index error in the qtdemux_parse_samples function in ...)
 	{DSA-1729-1}
 	- gst-plugins-good0.10 0.10.8-4.1 (bug #514177)




More information about the Secure-testing-commits mailing list