[Secure-testing-commits] r14162 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Sun Feb 28 21:29:20 UTC 2010


Author: jmm-guest
Date: 2010-02-28 21:29:19 +0000 (Sun, 28 Feb 2010)
New Revision: 14162

Modified:
   data/CVE/list
Log:
webkit not affected by ssl parsing issue, uses gnutls


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-02-28 18:25:24 UTC (rev 14161)
+++ data/CVE/list	2010-02-28 21:29:19 UTC (rev 14162)
@@ -5719,9 +5719,6 @@
 	NOT-FOR-US: PunBB
 CVE-2008-7240 (Directory traversal vulnerability in include/unverified.inc.php in ...)
 	NOT-FOR-US: Linux Web Shop (LWS) php User Base
-CVE-2009-XXXX [webkit: potential ssl certificate null character stripping vulnerability]
-	- webkit <unfixed> (medium; bug #547217)
-	TODO: asked maintainer to check; follow-up
 CVE-2009-3234 (Buffer overflow in the perf_copy_attr function in ...)
 	- linux-2.6 <not-affected> (Introduced in 2.6.31, fixed in Debian package before initial 2.6.31 upload)
 	- linux-2.6.24 <not-affected> (Introduced in 2.6.31)




More information about the Secure-testing-commits mailing list