[Secure-testing-commits] r21810 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue Apr 2 19:51:25 UTC 2013
Author: carnil
Date: 2013-04-02 19:51:25 +0000 (Tue, 02 Apr 2013)
New Revision: 21810
Modified:
data/CVE/list
Log:
add bugreference for CVE-2011-3200, rsyslog
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-04-02 19:18:01 UTC (rev 21809)
+++ data/CVE/list 2013-04-02 19:51:25 UTC (rev 21810)
@@ -28603,7 +28603,7 @@
- evolution <unfixed> (unimportant)
NOTE: Any attacks still involve quite some social engineering
CVE-2011-3200 (Stack-based buffer overflow in the parseLegacySyslogMsg function in ...)
- - rsyslog 5.8.5-1 (low)
+ - rsyslog 5.8.5-1 (low; bug #644611)
[squeeze] - rsyslog <no-dsa> (Minor issue)
[lenny] - rsyslog <no-dsa> (Minor issue)
NOTE: off-by-one/-two limited to 0 or :0
More information about the Secure-testing-commits
mailing list