[Secure-testing-commits] r15893 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Sun Jan 16 01:55:08 UTC 2011
Author: jmm
Date: 2011-01-16 01:55:07 +0000 (Sun, 16 Jan 2011)
New Revision: 15893
Modified:
data/CVE/list
Log:
encfs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-01-16 01:44:23 UTC (rev 15892)
+++ data/CVE/list 2011-01-16 01:55:07 UTC (rev 15893)
@@ -1228,8 +1228,7 @@
NOT-FOR-US: Microsoft Data Access Components
CVE-2010-XXXX [ircd-ratbox password disclosure?]
- ircd-ratbox 3.0.6.dfsg-2
- TODO: check
- NOTE: 20101210234921.206660uv6p8pku41 at webdesk.duckcorp.org
+ NOTE: Poked maintainer
CVE-2010-XXXX [wordpress: insufficient permissions verification on XMLRPC interface]
- wordpress 3.0.3-1 (bug #606657)
[lenny] - wordpress <not-affected> (vulnerable code not present)
@@ -5249,10 +5248,13 @@
NOTE: http://packetstormsecurity.org/1009-exploits/smbind-sql.txt
CVE-2010-3075 (EncFS before 1.7.0 encrypts multiple blocks by means of the CFB cipher ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Not backportable, breaks backwards-compatibility)
CVE-2010-3074 (SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Minor issue)
CVE-2010-3073 (SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Minor issue)
CVE-2010-3072 (The string-comparison functions in String.cci in Squid 3.x before ...)
{DSA-2111-1}
- squid3 3.1.6-1.1 (bug #596086; low)
More information about the Secure-testing-commits
mailing list