Author: nion Date: 2008-05-02 11:22:44 +0000 (Fri, 02 May 2008) New Revision: 8673 Modified: data/CVE/list Log: CVE-2007-5964 also patched in autofs5 5.0.3-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-05-02 11:16:04 UTC (rev 8672) +++ data/CVE/list 2008-05-02 11:22:44 UTC (rev 8673) @@ -5587,8 +5587,6 @@ - tomcat5.5 <not-affected> (Does not use apr connector) - tomcat5 <removed> CVE-2007-6285 (The default configuration for autofs 5 (autofs5) in some Linux ...) - NOTE: maintainer will patch autofs5 in upload to unstable - TODO: check when autofs5 hits unstable - autofs <not-affected> (-hosts feature not present, auto.net has nosuid,nodev) - autofs5 5.0.3-1 NOTE: for autofs5 see 12disable_default_auto_master.dpatch @@ -6421,9 +6419,7 @@ - qt-x11-free <not-affected> (Vulnerable code was introduced in 4.3) CVE-2007-5964 (The default configuration of autofs 5 in some Linux distributions, ...) - autofs 3.1.4-8 (medium) - - autofs5 <unfixed> - NOTE: maintainer will patch autofs5 in upload to unstable - TODO: check when autofs5 hits unstable + - autofs5 5.0.3-1 CVE-2007-5963 (Unspecified vulnerability in kdebase allows local users to cause a ...) - kdebase <unfixed> (unimportant) NOTE: This has only theoretical security impact