[Secure-testing-commits] r21003 - data/CVE
Yves-Alexis Perez
corsac at alioth.debian.org
Mon Jan 21 20:33:23 UTC 2013
Author: corsac
Date: 2013-01-21 20:33:23 +0000 (Mon, 21 Jan 2013)
New Revision: 21003
Modified:
data/CVE/list
Log:
update hplip CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-21 20:32:44 UTC (rev 21002)
+++ data/CVE/list 2013-01-21 20:33:23 UTC (rev 21003)
@@ -3584,8 +3584,8 @@
- ruby-rack <unfixed> (bug #698440)
CVE-2012-6108 [default permissions for /var/log/hp are too open]
RESERVED
- - hplip <unfixed>
- TODO: check, hplib in Debian affected?
+ - hplip <not-affected>
+ NOTE: permissions are 755 on wheezy, sid and experimental
CVE-2012-6107 [Does not verify that the server hostname matches a domain name in the subject's CN or subjectAltName field of the x.509 certificate]
RESERVED
- axis2c <unfixed> (bug #697974)
More information about the Secure-testing-commits
mailing list