[Git][security-tracker-team/security-tracker][master] Update two CVEs for sredird and drop temporary entry

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 1 19:57:54 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f640939d by Salvatore Bonaccorso at 2024-06-01T20:57:14+02:00
Update two CVEs for sredird and drop temporary entry

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -720583,8 +720583,6 @@ CVE-2005-XXXX [hdup inproperly preserves permissions on directories]
 	[sarge] - hdup <no-dsa> (Mostly a design limitation, very limited security implications)
 CVE-2001-XXXX [crypt++ passes passwords through the command line]
 	- crypt++el 2.91-2.1 (bug #105562; low)
-CVE-2004-XXXX [Two vulnerabilities in sredird]
-	- sredird 2.2.1-1.1 (bug #267098)
 CVE-2003-XXXX [fuzz: Insecure temp file usage]
 	- fuzz 0.6-7.1 (bug #183047)
 CVE-2005-XXXX [DoS triggering endless loops in findutils -follow option]
@@ -722158,9 +722156,9 @@ CVE-2005-2555 (Linux kernel 2.6.x does not properly restrict socket policy acces
 CVE-2004-2388 (rexecd for AIX 4.3.3 does not properly use a local copy of the pwd str ...)
 	NOT-FOR-US: rexecd
 CVE-2004-2387 (Buffer overflow in the HandleCPCCommand function of sercd before 2.3.1 ...)
-	- sredird <unfixed>
+	- sredird 2.2.1-1.1 (bug #267098)
 CVE-2004-2386 (Format string vulnerability in the LogMsg function in sercd before 2.3 ...)
-	- sredird <unfixed> (bug #1072340)
+	- sredird 2.2.1-1.1 (bug #267098; bug #1072340)
 CVE-2004-2385 (EMU Webmail 5.2.7 allows remote attackers to obtain sensitive path inf ...)
 	NOT-FOR-US: EMU Webmail
 CVE-2004-2384 (NullSoft Winamp 5.02 allows remote attackers to cause a denial of serv ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f640939da7a020d00cfb7bbebf5ae920af67da3a

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f640939da7a020d00cfb7bbebf5ae920af67da3a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240601/1b65a394/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list