Secure testing commits - Apr 2009 - r11597 - data/CVE

Author: jmm-guest
Date: 2009-04-09 12:05:15 +0000 (Thu, 09 Apr 2009)
New Revision: 11597

Modified:
   data/CVE/list
Log:
update Etch status for krb5


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-04-09 09:14:12 UTC (rev 11596)
+++ data/CVE/list	2009-04-09 12:05:15 UTC (rev 11597)
@@ -1376,6 +1376,7 @@
 	RESERVED
 	{DSA-1766-1}
 	- krb5 1.6.dfsg.4~beta1-13
+	[etch] - krb5 <not-affected> (Affected code present, but not exploitable
before 1.6.3)
 CVE-2009-0846
 	RESERVED
 	{DSA-1766-1}
@@ -1383,10 +1384,12 @@
 CVE-2009-0845 (The spnego_gss_accept_sec_context function in ...)
 	{DSA-1766-1}
 	- krb5 1.6.dfsg.4~beta1-13
+	[etch] - krb5 <not-affected> (Vulnerable code was introduced in 1.5)
 CVE-2009-0844
 	RESERVED
 	{DSA-1766-1}
 	- krb5 1.6.dfsg.4~beta1-13
+	[etch] - krb5 <not-affected> (Vulnerable code was introduced in 1.5)
 CVE-2009-0843 (The msLoadQuery function in mapserv in MapServer 4.x before
4.10.4 and ...)
 	- mapserver 5.2.2-1 (unimportant; bug #523027)
 	NOTE: this can only probe for files that are not present, useless when not

Hi,
* Moritz Muehlenhoff <jmm-guest at alioth.debian.org> [2009-04-09
14:32]:
> Author: jmm-guest
> Date: 2009-04-09 12:05:15 +0000 (Thu, 09 Apr 2009)
> New Revision: 11597
> 
> Modified:
>    data/CVE/list
> Log:
> update Etch status for krb5
[...] 
Thanks! I wasn''t sure how to mark this properly.

Cheers
Nico
-- 
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL:
<http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20090409/af440c5f/attachment.pgp>