[Git][security-tracker-team/security-tracker][master] Remove two manual overrides in ancient entry and note

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Apr 29 16:15:52 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
75c06504 by Salvatore Bonaccorso at 2023-04-29T17:17:39+02:00
Remove two manual overrides in ancient entry and note

The reason was maybe that back then there was not automatic
cross-referencing from the DSAs. Drop those as the information was
recorded in the DSA list already.

Not touching any older entries further, but this one was asked by a
Debian user on discrepancy in version data.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -563950,13 +563950,10 @@ CVE-2010-2063 (Buffer overflow in the SMB1 packet chaining implementation in the
 CVE-2010-2062 (Integer underflow in the real_get_rdt_chunk function in real.c, as use ...)
 	{DSA-2044-1 DSA-2043-1}
 	- vlc 1.0.1-1
-	[lenny] - vlc 0.8.6.h-4+lenny2.3
 	- mplayer 2:1.0~rc3+svn20100502-3 (medium; bug #581245)
-	[lenny] - mplayer 1.0~rc2-17+lenny3.2
 	- xine-lib <not-affected> (immune due to additional check in xio_rw_abbort())
 	NOTE: https://git.videolan.org/?p=vlc.git;a=commitdiff;h=dc74600c97eb834c08674676e209afa842053aca
 	NOTE: http://dzcore.wordpress.com/2009/07/27/dzc-2009-001-the-movie-player-and-vlc-media-player-real-data-transport-parsing-integer-underflow/
-	NOTE: DSA-2043 and DSA-2044
 CVE-2010-2061 (rpcbind 0.2.0 does not properly validate (1) /tmp/portmap.xdr and (2)  ...)
 	- rpcbind 0.2.0-4.1
 CVE-2010-2060 (The put command functionality in beanstalkd 1.4.5 and earlier allows r ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/75c0650468d410d3b25eb18630928034740266a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/75c0650468d410d3b25eb18630928034740266a3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230429/4df6d4de/attachment.htm>

More information about the debian-security-tracker-commits mailing list