joeyh at alioth.debian.org
2008-May-14 21:14 UTC
[Secure-testing-commits] r8811 - data/CVE
Author: joeyh
Date: 2008-05-14 21:14:14 +0000 (Wed, 14 May 2008)
New Revision: 8811
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-05-14 18:28:42 UTC (rev 8810)
+++ data/CVE/list 2008-05-14 21:14:14 UTC (rev 8811)
@@ -1523,6 +1523,7 @@
CVE-2008-1484 (The password reset feature in PunBB 1.2.16 and earlier uses ...)
NOT-FOR-US: PunBB
CVE-2008-1483 (OpenSSH 4.3p2, and probably other versions, allows local users
to ...)
+ {DSA-1576-1}
- openssh 1:4.7p1-5 (bug #463011)
CVE-2008-1482 (Multiple integer overflows in xine-lib 1.1.11 and earlier allow
remote ...)
{DTSA-120-1}
@@ -4614,11 +4615,12 @@
RESERVED
CVE-2008-0167 [gforge insecure file handling]
RESERVED
+ {DSA-1577-1}
- gforge 4.6.99+svn6496-1 (low)
NOTE: https://rt.debian.org/Ticket/Display.html?id=672
CVE-2008-0166 [openssl predictable random number generator]
RESERVED
- {DSA-1571-1}
+ {DSA-1576-1 DSA-1571-1}
- openssl 0.9.8g-9 (high)
[sarge] - openssl <not-affected> (Vulnerable code not present)
NOTE: http://www.debian.org/security/key-rollover/
@@ -10596,6 +10598,7 @@
CVE-2007-4749 (The cmdjob utility in Autodesk Backburner 3.0.2 allows remote
...)
NOT-FOR-US: Autodesk Backburner
CVE-2007-4752 (ssh in OpenSSH before 4.7 does not properly handle when an
untrusted ...)
+ {DSA-1576-1}
- openssh 1:4.7p1-1 (low; bug #444738)
[etch] - openssh <no-dsa> (minor issue in weak security measure)
[sarge] - openssh <no-dsa> (minor issue in weak security measure)