[Secure-testing-commits] r17756 - data/CVE

Florian Weimer fw at alioth.debian.org
Tue Dec 6 20:34:41 UTC 2011


Author: fw
Date: 2011-12-06 20:34:41 +0000 (Tue, 06 Dec 2011)
New Revision: 17756

Modified:
   data/CVE/list
Log:
CVE-2011-4675: widelands already fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-12-06 20:01:22 UTC (rev 17755)
+++ data/CVE/list	2011-12-06 20:34:41 UTC (rev 17756)
@@ -1,7 +1,9 @@
 CVE-2011-4676
 	RESERVED
 CVE-2011-4675 (The pathname canonicalization functionality in ...)
-	TODO: check
+	- widelands 1:15-3 (low)
+	NOTE: Nearly a duplicate of CVE-2011-1932.
+	NOTE: CVE's SPLIT decision is unclear.
 CVE-2011-4674 (SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4, ...)
 	TODO: check
 CVE-2011-4673 (SQL injection vulnerability in modules/sharedaddy.php in the Jetpack ...)
@@ -7700,7 +7702,6 @@
 	- libjifty-dbi-perl 0.68-1 (bug #622919)
 CVE-2011-1932 (Directory traversal vulnerability in io/filesystem/filesystem.cc in ...)
 	- widelands 1:15-3 (low; bug #617960)
-	[squeeze] - widelands 1:15-3squeeze1
 	[lenny] - widelands <no-dsa> (Minor issue)
 CVE-2011-1931 (sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg ...)
 	- libav 4:0.6.2-3 (bug #624339)




More information about the Secure-testing-commits mailing list