[Secure-testing-commits] r22621 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sun Jun 16 15:00:19 UTC 2013
Author: carnil
Date: 2013-06-16 15:00:19 +0000 (Sun, 16 Jun 2013)
New Revision: 22621
Modified:
data/CVE/list
Log:
add fixed version for CVE-2009-4496/boa in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-16 12:45:41 UTC (rev 22620)
+++ data/CVE/list 2013-06-16 15:00:19 UTC (rev 22621)
@@ -56295,7 +56295,7 @@
- lxr-cvs 0.9.5+cvs20071020-1.1 (low; bug #575745)
NOTE: http://sourceforge.net/mailarchive/forum.php?thread_name=E1NS2s4-0001PE-F2@3bkjzd1.ch3.sourceforge.com&forum_name=lxr-developer
CVE-2009-4496 (Boa 0.94.14rc21 writes data to a log file without sanitizing ...)
- - boa <unfixed> (unimportant; bug #578035)
+ - boa 0.94.14rc21-4 (unimportant; bug #578035)
NOTE: The actual issue is within the broken terminal emulators and needs to be fixed there, see CVE-2009-4487
CVE-2009-4495 (Yaws 1.85 writes data to a log file without sanitizing non-printable ...)
- yaws <unfixed> (unimportant)
More information about the Secure-testing-commits
mailing list