[Secure-testing-commits] r15693 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Mon Dec 13 09:14:47 UTC 2010
Author: joeyh
Date: 2010-12-13 09:14:42 +0000 (Mon, 13 Dec 2010)
New Revision: 15693
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-12-13 00:44:15 UTC (rev 15692)
+++ data/CVE/list 2010-12-13 09:14:42 UTC (rev 15693)
@@ -519,8 +519,8 @@
CVE-2008-7267 (SQL injection vulnerability in announcements.php in SiteEngine 5.x ...)
NOT-FOR-US: SiteEngine
CVE-2010-XXXX [echoping buffer overflows]
- - echoping <unfixed> (low; bug #606808)
- NOTE: not sure if any of these are real security concerns
+ - echoping <unfixed> (low; bug #606808)
+ NOTE: not sure if any of these are real security concerns
CVE-2010-XXXX [elfsign uses cryptographically weak md5 hashes]
- elfsign <unfixed> (low; bug #555668)
[lenny] - elfsign <no-dsa> (a stronger hashing algorithm would completely change functionality of the package)
@@ -8666,8 +8666,8 @@
CVE-2010-1379 (Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly ...)
NOT-FOR-US: Apple Mac OS X
CVE-2010-1378 (OpenSSL in Apple Mac OS X 10.6.x before 10.6.5 does not properly ...)
- - openssl <not-affected> (fix for an apple-specific flaw)
- NOTE: sounds like a duplicate of CVE-2009-2409
+ - openssl <not-affected> (fix for an apple-specific flaw)
+ NOTE: sounds like a duplicate of CVE-2009-2409
CVE-2010-1377 (Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an ...)
NOT-FOR-US: Apple Mac OS X
CVE-2010-1376 (Multiple format string vulnerabilities in Network Authorization in ...)
More information about the Secure-testing-commits
mailing list