[Secure-testing-commits] r15695 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Mon Dec 13 17:55:23 UTC 2010


Author: jmm-guest
Date: 2010-12-13 17:55:22 +0000 (Mon, 13 Dec 2010)
New Revision: 15695

Modified:
   data/CVE/list
Log:
- calendarserver fixed
- pybliographer tpu fix
- echoping bug not a security issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-13 16:57:41 UTC (rev 15694)
+++ data/CVE/list	2010-12-13 17:55:22 UTC (rev 15695)
@@ -518,9 +518,6 @@
 	NOT-FOR-US: SiteEngine
 CVE-2008-7267 (SQL injection vulnerability in announcements.php in SiteEngine 5.x ...)
 	NOT-FOR-US: SiteEngine
-CVE-2010-XXXX [echoping buffer overflows]
-	- echoping <unfixed> (low; bug #606808)
-	NOTE: not sure if any of these are real security concerns 
 CVE-2010-XXXX [elfsign uses cryptographically weak md5 hashes]
 	- elfsign <unfixed> (low; bug #555668)
 	[lenny] - elfsign <no-dsa> (a stronger hashing algorithm would completely change functionality of the package)
@@ -649,8 +646,9 @@
 	- opendnssec 1.1.3-2 (low; bug #605161)
 CVE-2010-XXXX [python path]
 	- pybliographer 1.2.14-3 (low; bug #605153)
+	[squeeze] - pybliographer 1.2.12-4squeeze1
 CVE-2010-XXXX [python path]
-	- calendarserver <unfixed> (low; bug #605157)
+	- calendarserver 2.4.dfsg-2.1 (low; bug #605157)
 	[lenny] - calendarserver <no-dsa> (Minor issue)
 CVE-2010-XXXX [python path]
 	- gquilt 0.22-1.1 (low; bug #605152)
@@ -2285,7 +2283,7 @@
 	- drupal6 6.18-1 (low; bug #592716)
 CVE-2010-4340 [libcloud doesn't verify SSL certificate]
 	RESERVED
-	- libcloud <unfixed> (bug #598463)
+	- libcloud <unfixed> (low; bug #598463)
 CVE-2010-3688 (Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA ...)
 	NOT-FOR-US: NetArtMEDIA WebSiteAdmin
 CVE-2010-3684 (The FTP authentication module in Synology Disk Station 2.x logs ...)




More information about the Secure-testing-commits mailing list