[Secure-testing-commits] r13773 - data/CVE

Raphael Geissert geissert at alioth.debian.org
Sat Jan 9 20:53:11 UTC 2010


Author: geissert
Date: 2010-01-09 20:53:11 +0000 (Sat, 09 Jan 2010)
New Revision: 13773

Modified:
   data/CVE/list
Log:
pidgin issue update


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-01-09 19:55:15 UTC (rev 13772)
+++ data/CVE/list	2010-01-09 20:53:11 UTC (rev 13773)
@@ -1003,10 +1003,9 @@
 	RESERVED
 CVE-2010-0013 [pidgin local file disclosure vuln]
 	RESERVED
-	- pidgin <unfixed> (medium; bug #563206)
-	- gaim <removed>
-	TODO: check stable and oldstable (i.e. gaim)
-	TODO: check for the memory corruption in slp also mentioned in the paper
+	- pidgin 2.6.4-2 (medium; bug #563206)
+	[lenny] - pidgin <not-affected> (vulnerable code not present)
+	- gaim <not-affected> (vulnerable code not present)
 	NOTE: http://events.ccc.de/congress/2009/Fahrplan/attachments/1483_26c3_ipv4_fuckups.pdf
 CVE-2010-0012 [transmission directory traversal when processing .torrent files]
 	RESERVED




More information about the Secure-testing-commits mailing list