[Secure-testing-commits] r15913 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Jan 17 18:50:09 UTC 2011


Author: jmm
Date: 2011-01-17 18:50:05 +0000 (Mon, 17 Jan 2011)
New Revision: 15913

Modified:
   data/CVE/list
Log:
- new tor issues fixed in sid
- update info on ratbox information disclosure


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-01-17 18:48:56 UTC (rev 15912)
+++ data/CVE/list	2011-01-17 18:50:05 UTC (rev 15913)
@@ -37,8 +37,7 @@
 	RESERVED
 CVE-2011-0427
 	RESERVED
-CVE-2011-0426
-	RESERVED
+	- tor 0.2.1.29-1
 CVE-2011-0425
 	RESERVED
 CVE-2011-0424
@@ -1225,9 +1224,9 @@
 	NOT-FOR-US: Microsoft Data Access Components
 CVE-2011-0026 (Integer signedness error in the SQLConnectW function in an ODBC API ...)
 	NOT-FOR-US: Microsoft Data Access Components
-CVE-2010-XXXX [ircd-ratbox password disclosure?]
+CVE-2010-XXXX [ircd-ratbox password disclosure during TLS handshake]
 	- ircd-ratbox 3.0.6.dfsg-2
-	NOTE: Poked maintainer
+	[lenny] - ircd-ratbox <not-affected> (TLS support not yet activated)
 CVE-2010-XXXX [wordpress: insufficient permissions verification on XMLRPC interface]
 	- wordpress 3.0.3-1 (bug #606657)
 	[lenny] - wordpress <not-affected> (vulnerable code not present)




More information about the Secure-testing-commits mailing list