[Secure-testing-commits] r15694 - in data: . CVE

Raphael Geissert geissert at alioth.debian.org
Mon Dec 13 16:57:42 UTC 2010


Author: geissert
Date: 2010-12-13 16:57:41 +0000 (Mon, 13 Dec 2010)
New Revision: 15694

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
new dhcp issue
phpbb3 embeds a modified phpass


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-13 09:14:42 UTC (rev 15693)
+++ data/CVE/list	2010-12-13 16:57:41 UTC (rev 15694)
@@ -2408,8 +2408,13 @@
 	NOT-FOR-US: PGP Desktop
 CVE-2010-3617
 	RESERVED
-CVE-2010-3616
+CVE-2010-3616 [DHCP Server Hangs with TCP to Failover Peer Port]
 	RESERVED
+	- iscp-dhcp <unfixed>
+	- dhcp3 <removed>
+	- dhcp <removed>
+	TODO: check
+	NOTE: probably doesn't affect squeeze: https://lists.isc.org/pipermail/dhcp-users/2010-December/012368.html
 CVE-2010-3615 (named in ISC BIND 9.7.2-P2 does not check all intended locations for ...)
 	- bind9 1:9.7.2.dfsg.P3-1 (bug #605876)
 	NOTE: http://ftp.isc.org/isc/bind9/9.7.2-P3/RELEASE-NOTES-BIND-9.7.2-P3.html

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2010-12-13 09:14:42 UTC (rev 15693)
+++ data/embedded-code-copies	2010-12-13 16:57:41 UTC (rev 15694)
@@ -1786,6 +1786,8 @@
 	NOTE: a copyright owner search didn't match anything
 	- libauthen-passphrase-perl <unfixable> (fork)
 	NOTE: perl implementation of phpass
+	- phpbb3 <unfixed>
+	NOTE: hash identifier modified: s/P/H/; recent version 0.3 of phpass recognises it
 
 squirrelmail
 	- wordpress <unfixed> (embed)




More information about the Secure-testing-commits mailing list