[Secure-testing-commits] r16063 - in data: . CVE

Sat Feb 5 13:09:43 UTC 2011

Author: jmm
Date: 2011-02-05 13:09:41 +0000 (Sat, 05 Feb 2011)
New Revision: 16063

Modified:
   data/CVE/list
   data/ospu-candidates.txt
Log:
mediatomb no-dsa


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2011-02-05 12:59:25 UTC (rev 16062)
+++ data/CVE/list	2011-02-05 13:09:41 UTC (rev 16063)
@@ -5148,7 +5148,8 @@
 	[lenny] - python-numpy <no-dsa> (Minor issue)
 	NOTE: http://projects.scipy.org/numpy/changeset/8364
 CVE-2010-XXXX [mediatomb directory traversal]
-	- mediatomb 0.12.0~svn2018-6.1 (medium; bug #580120)
+	- mediatomb 0.12.0~svn2018-6.1 (low; bug #580120)
+	[lenny] - mediatomb <no-dsa> (Interface should be disabled in a point update)
 CVE-2010-3428 (SQL injection vulnerability in modules/notes/json.php in Intermesh ...)
 	NOT-FOR-US: Intermesh Group-Office
 CVE-2010-3427 (Multiple cross-site scripting (XSS) vulnerabilities in Open ...)

Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt	2011-02-05 12:59:25 UTC (rev 16062)
+++ data/ospu-candidates.txt	2011-02-05 13:09:41 UTC (rev 16063)
@@ -405,6 +405,12 @@
 
 --
 
+mediatomb (CVE-2010-XXXX)
+#580120
+Interface should be disabled in a point update, no real fix
+
+--
+
 memcached (CVE-2009-1255)
 notified maintainer
 


