[Secure-testing-commits] r12000 - data/CVE
Luciano Bello
luciano at alioth.debian.org
Sat May 30 19:53:03 UTC 2009
Author: luciano
Date: 2009-05-30 19:53:03 +0000 (Sat, 30 May 2009)
New Revision: 12000
Modified:
data/CVE/list
Log:
libxml2 <not-affected> by CVE-2008-4409
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-30 19:29:54 UTC (rev 11999)
+++ data/CVE/list 2009-05-30 19:53:03 UTC (rev 12000)
@@ -9919,8 +9919,10 @@
- linux-2.6.24 <not-affected> (Vulnerable code not present)
[etch] - linux-2.6 <not-affected> (Vulnerable code not present)
CVE-2008-4409 (libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities ...)
- - libxml2 <not-affected> (Vulnerable code not present, introduced in 2.7.0)
- TODO: check again if >= 2.7 gets uploaded
+ - libxml2 <not-affected>
+ [lenny] - libxml2 <not-affected> (Vulnerable code not present)
+ [etch] - libxml2 <not-affected> (Vulnerable code not present)
+ NOTE: The bug affects only to 2.7.0 and 2.7.1
CVE-2008-4406 (A certain Debian patch to the run scripts for sabre (aka xsabre) ...)
- sabre 0.2.4b-25 (low; bug #433996)
[etch] - sabre <no-dsa> (Game not qualified as multi-user system, thus minor issue)
More information about the Secure-testing-commits
mailing list