[Secure-testing-commits] r21286 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri Feb 15 19:41:21 UTC 2013
Author: carnil
Date: 2013-02-15 19:41:21 +0000 (Fri, 15 Feb 2013)
New Revision: 21286
Modified:
data/CVE/list
Log:
add bugnumber for old CVE-2009-4496
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-15 18:29:29 UTC (rev 21285)
+++ data/CVE/list 2013-02-15 19:41:21 UTC (rev 21286)
@@ -48749,7 +48749,7 @@
- lxr-cvs 0.9.5+cvs20071020-1.1 (low; bug #575745)
NOTE: http://sourceforge.net/mailarchive/forum.php?thread_name=E1NS2s4-0001PE-F2@3bkjzd1.ch3.sourceforge.com&forum_name=lxr-developer
CVE-2009-4496 (Boa 0.94.14rc21 writes data to a log file without sanitizing ...)
- - boa <unfixed> (unimportant)
+ - boa <unfixed> (unimportant; bug #578035)
NOTE: The actual issue is within the broken terminal emulators and needs to be fixed there, see CVE-2009-4487
CVE-2009-4495 (Yaws 1.85 writes data to a log file without sanitizing non-printable ...)
- yaws <unfixed> (unimportant)
More information about the Secure-testing-commits
mailing list