[Secure-testing-commits] r13239 - data/CVE

Michael Gilbert michael.s.gilbert at gmail.com
Sun Nov 8 22:10:40 UTC 2009


On Sun,  8 Nov 2009 20:00:46 +0000 Moritz Muehlenhoff wrote:

> Author: jmm-guest
> Date: 2009-11-08 20:00:46 +0000 (Sun, 08 Nov 2009)
> New Revision: 13239
> 
> Modified:
>    data/CVE/list
> Log:
> remove ldd entry, this is standard behaviour, which might need
> better documentation, but doesn't need to be tracked as a security
> issue
> 
> 
> Modified: data/CVE/list
> ===================================================================
> --- data/CVE/list	2009-11-08 19:54:27 UTC (rev 13238)
> +++ data/CVE/list	2009-11-08 20:00:46 UTC (rev 13239)
> @@ -131,11 +131,6 @@
>  	NOT-FOR-US: Amiro.CMS
>  CVE-2009-3801 (SQL injection vulnerability in index.php in OpenDocMan 1.2.5 allows ...)
>  	NOT-FOR-US: OpenDocMan
> -CVE-2009-XXXX [eglibc: ldd arbitrary code execution]
> -	- eglibc <unfixed> (low; bug #552518)
> -	- glibc <removed> (low; bug #552518)
> -	[etch] - glibc <no-dsa> (no known solution at the present time)
> -	[lenny] - glibc <no-dsa> (no known solution at the present time)

what is the harm in keeping this on the radar?

mike



More information about the Secure-testing-commits mailing list