nion at alioth.debian.org
2008-Oct-04 10:44 UTC
[Secure-testing-commits] r9992 - in data: CVE NMU
Author: nion Date: 2008-10-04 10:44:30 +0000 (Sat, 04 Oct 2008) New Revision: 9992 Modified: data/CVE/list data/NMU/list Log: CVE-2008-4297 fixed in mercurial 1.0.1-5.1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-04 10:37:54 UTC (rev 9991) +++ data/CVE/list 2008-10-04 10:44:30 UTC (rev 9992) @@ -293,7 +293,7 @@ CVE-2008-4299 (A certain ActiveX control in the Microsoft Internet Authentication ...) NOT-FOR-US: Microsoft CVE-2008-4297 (Mercurial before 1.0.2 does not enforce the allowpull permission ...) - - mercurial <unfixed> (low; bug #500781) + - mercurial 1.0.1-5.1 (low; bug #500781) NOTE: the package doesnt install this script by default but ships it with the examples CVE-2008-4296 (The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its ...) NOT-FOR-US: Cisco Linksys WRT350N Modified: data/NMU/list ==================================================================--- data/NMU/list 2008-10-04 10:37:54 UTC (rev 9991) +++ data/NMU/list 2008-10-04 10:44:30 UTC (rev 9992) @@ -123,3 +123,4 @@ 2008-09-11 gmanedit 0.4.1-1.1 2008-09-26 faad2 2.6.1-3.1 2008-10-02 ssmtp 2.62-1.1 +2008-10-04 mercurial 1.0.1-5.1