[Secure-testing-commits] r15894 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-01-16 02:08:22 +0000 (Sun, 16 Jan 2011)
New Revision: 15894

Modified:
   data/CVE/list
Log:
slurm no-dsa
sun-java no-dsa
sudo issue doesn't affect Debian



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-01-16 01:55:07 UTC (rev 15893)
+++ data/CVE/list	2011-01-16 02:08:22 UTC (rev 15894)
@@ -1401,6 +1401,7 @@
 	RESERVED
 CVE-2011-0008
 	RESERVED
+	- sudo <not-affected> (Fedora-specific issue)
 CVE-2011-0007 (pimd 2.1.5 and possibly earlier versions allows user-assisted local ...)
 	- pimd 2.1.6-1 (unimportant; bug #609304)
 	[squeeze] - pimd 2.1.1-1.1 (unimportant; bug #609304)
@@ -4369,7 +4370,8 @@
 	[lenny] - tangerine <no-dsa> (minor issue)
 CVE-2010-3380 (The (1) init.d/slurm and (2) init.d/slurmdbd scripts in SLURM before ...)
 	- slurm-llnl 2.1.15-2 (bug #602340)
-	[squeeze] - slurm-llnl 2.1.11-1squeeze1 (bug #602340)
+ 	[squeeze] - slurm-llnl 2.1.11-1squeeze1 (bug #602340)
+ 	[lenny] - slurm-llnl <no-dsa> (Minor issue)
 	NOTE: Debian package ships its own, also vulnerable, init script. NOT fixed in 2.1.14-1
 CVE-2010-3379
 	RESERVED
@@ -17156,6 +17158,7 @@
 	- openssl 0.9.8k-6
 	- nss 3.12.6-1
 	- sun-java5 <removed>
+	[lenny] - sun-java5 <no-dsa> (Minor issue)
 	- sun-java6 6.19-1
 	[lenny] - sun-java6 6-22-0lenny
 	NOTE: Update 22 for Sun Java implemented the new RFC extension