[Secure-testing-commits] r15520 - data/CVE

Mon Oct 25 16:21:36 UTC 2010

Author: jmm-guest
Date: 2010-10-25 16:21:27 +0000 (Mon, 25 Oct 2010)
New Revision: 15520

Modified:
   data/CVE/list
Log:
- mailman fixed
- one amsn issue fixed 
- ettercap issues are unimportant


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2010-10-24 21:14:44 UTC (rev 15519)
+++ data/CVE/list	2010-10-25 16:21:27 UTC (rev 15520)
@@ -468,12 +468,12 @@
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3852
 CVE-2010-3844
 	RESERVED
-	- ettercap <unfixed> (low; bug #600130)
-	[lenny] - ettercap <no-dsa> (Minor issue)
+	- ettercap <unfixed> (unimportant; bug #600130)
+	NOTE: Very far-fetched attack vector
 CVE-2010-3843
 	RESERVED
-	- ettercap <unfixed> (low; bug #600130)
-	[lenny] - ettercap <no-dsa> (Minor issue)
+	- ettercap <unfixed> (unimportant; bug #600130)
+	NOTE: Very far-fetched attack vector
 CVE-2010-3842
 	RESERVED
 	- curl <not-affected> (Doesn't affect POSIX systems)
@@ -2489,7 +2489,7 @@
 CVE-2010-3090 [mailman, will be rejected]
 	RESERVED
 CVE-2010-3089 (Multiple cross-site scripting (XSS) vulnerabilities in GNU Mailman ...)
-	- mailman <unfixed> (bug #599833)
+	- mailman 1:2.1.13-4.1 (bug #599833)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id={631881,631859}
 CVE-2010-3088 (The notify function in pidgin-knotify.c in the pidgin-knotify plugin ...)
 	TODO: check
@@ -9127,9 +9127,8 @@
 	NOTE: http://www.dovecot.org/list/dovecot-news/2010-March/000152.html
 	[etch] - dovecot <not-affected> (Vulnerable code not present)
 CVE-2010-0744 (aMSN (aka Alvaro's Messenger) 0.98.3 and earlier, when SSL is used, ...)
-	- amsn <unfixed> (bug #572818)
+	- amsn 0.98.3-1 (low; bug #572818)
 	[lenny] - amsn <no-dsa> (Minor issue)
-	NOTE: http://www.juniper.net/security/auto/vulnerabilities/vuln35507.html
 CVE-2010-0743 (Multiple format string vulnerabilities in isns.c in (1) Linux SCSI ...)
 	{DSA-2042-1}
 	- iscsitarget 0.4.17+svn229-1.4 (medium; bug #574935)


