thr3ads.net - Secure testing commits - [Secure-testing-commits] r10787

If this information is useful, please help other people find it:
Share via:

nion at alioth.debian.org

2008-Dec-23 19:39 UTC

[Secure-testing-commits] r10787 - data/CVE

Author: nion
Date: 2008-12-23 19:39:25 +0000 (Tue, 23 Dec 2008)
New Revision: 10787

Modified:
   data/CVE/list
Log:
verlihub cveified

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-12-23 17:28:10 UTC (rev 10786)
+++ data/CVE/list	2008-12-23 19:39:25 UTC (rev 10787)
@@ -1168,10 +1168,14 @@
 	- wireshark 1.0.5-1 (low; bug #506741)
 CVE-2008-5394 (/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably
other ...)
 	- shadow 1:4.1.1-6 (bug #505271)
-CVE-2008-XXXX [verlihub remote command execution and the possibility of attack
with the help of symlinks]
+CVE-2008-5706 [possibility of attack with the help of symlinks]
 	- verlihub <unfixed> (low; bug #506530)
 	TODO: further investigation on this package is needed
 	NOTE: see http://asdfasdf.ethz.ch/~tar/lina/rats/verlihub.rats
+CVE-2008-5705 [verlihub remote command execution]
+	- verlihub <unfixed> (low; bug #506530)
+	TODO: further investigation on this package is needed
+	NOTE: see http://asdfasdf.ethz.ch/~tar/lina/rats/verlihub.rats
 CVE-2008-5189 (CRLF injection vulnerability in Ruby on Rails before 2.0.5
allows ...)
 	- rails 2.1.0-6 (low)
 CVE-2008-5188 (The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential,
and ...)

Secure testing commits - Dec 2008 - r10787 - data/CVE

[Secure-testing-commits] r10787 - data/CVE