[Secure-testing-commits] r16845 - data/CVE

[Luciano Bello]

Author: luciano
Date: 2011-06-24 14:34:47 +0000 (Fri, 24 Jun 2011)
New Revision: 16845

Modified:
   data/CVE/list
Log:
opie: CVEed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-06-24 14:32:12 UTC (rev 16844)
+++ data/CVE/list	2011-06-24 14:34:47 UTC (rev 16845)
@@ -89,10 +89,12 @@
 	RESERVED
 CVE-2011-2491
 	RESERVED
-CVE-2011-2490
-	RESERVED
-CVE-2011-2489
-	RESERVED
+CVE-2011-2490 [opie: missing setuid() retval check in opielogin]
+	- opie <unfixed> (bug #631345)
+	TODO: check severity
+CVE-2011-2489 [opie: off by one in opiesu]
+	- opie <unfixed> (bug #631344)
+	TODO: check severity
 CVE-2011-2488 [Joomla unspecified information disclosure vulnerability]
 	RESERVED
 	NOT-FOR-US: Joomla
@@ -722,12 +724,6 @@
 	RESERVED
 CVE-2011-2176
 	RESERVED
-CVE-2011-XXXX [opie: off by one in opiesu]
-	- opie <unfixed> (bug #631344)
-	TODO: check severity
-CVE-2011-XXXX [opie: missing setuid() retval check in opielogin]
-	- opie <unfixed> (bug #631345)
-	TODO: check severity
 CVE-2011-2167 (script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot ...)
 	TODO: check
 CVE-2011-2166 (script-login in Dovecot 2.0.x before 2.0.13 does not follow the user ...)