[Secure-testing-commits] r16253 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Fri Feb 25 21:29:18 UTC 2011
Author: gilbert-guest
Date: 2011-02-25 21:29:13 +0000 (Fri, 25 Feb 2011)
New Revision: 16253
Modified:
data/CVE/list
Log:
some new issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-02-25 21:15:32 UTC (rev 16252)
+++ data/CVE/list 2011-02-25 21:29:13 UTC (rev 16253)
@@ -1,3 +1,15 @@
+CVE-2010-XXXX [eglibc: memory corruption]
+ - glibc <removed>
+ - eglibc <unfixed> (bug #615120)
+ NOTE: poc does not work on version 2.13 in experimental
+CVE-2011-XXXX [python2.6: distutils world-readable password]
+ - python2.6 <unfixed> (low; bug #615118)
+ [squeeze] - python2.6 <no-dsa> (minor issue)
+ [lenny] - python2.6 <no-dsa> (minor issue)
+ TODO: are other python versions affected?
+CVE-2011-XXXX [lilo: lilo.conf world-readable]
+ - lilo <unfixed> (low; bug #615103)
+ TODO: bug report says older version unaffected, check that
CVE-2011-1099
RESERVED
CVE-2011-1098
More information about the Secure-testing-commits
mailing list