[Secure-testing-commits] r18195 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Jan 17 21:29:00 UTC 2012
Author: jmm
Date: 2012-01-17 21:29:00 +0000 (Tue, 17 Jan 2012)
New Revision: 18195
Modified:
data/CVE/list
Log:
wicd non-issue
network-manager-gnome not-affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-01-17 21:28:04 UTC (rev 18194)
+++ data/CVE/list 2012-01-17 21:29:00 UTC (rev 18195)
@@ -25,7 +25,8 @@
CVE-2011-XXXX [apr dos]
- apr <unfixed> (low; bug #655435)
CVE-2011-XXXX [wicd cleartext passwords]
- - wicd <unfixed> (low; bug #652417)
+ - wicd <unfixed> (unimportant; bug #652417)
+ NOTE: Not a security issue per se, logfile only accessible by root:adm
CVE-2012-0697 (HP StorageWorks P2000 G3 MSA array systems have a default account, ...)
NOT-FOR-US: HP StorageWorks
CVE-2012-0696 (Multiple cross-site scripting (XSS) vulnerabilities in the Executive ...)
@@ -6368,8 +6369,7 @@
NOTE: http://www.kde.org/info/security/advisory-20111003-1.txt
TODO: File bugs
CVE-2011-3364 (Incomplete blacklist vulnerability in the svEscape function in ...)
- - network-manager-gnome <undetermined>
- NOTE: actually the ifcfg-rh plugin is affected. Do we include that?
+ - network-manager-gnome <not-affected> (ifcfg-rh plugin not built/included in Debian)
CVE-2011-3363
RESERVED
- linux-2.6 2.6.39-1
More information about the Secure-testing-commits
mailing list