Author: luciano Date: 2009-05-30 19:53:03 +0000 (Sat, 30 May 2009) New Revision: 12000 Modified: data/CVE/list Log: libxml2 <not-affected> by CVE-2008-4409 Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-05-30 19:29:54 UTC (rev 11999) +++ data/CVE/list 2009-05-30 19:53:03 UTC (rev 12000) @@ -9919,8 +9919,10 @@ - linux-2.6.24 <not-affected> (Vulnerable code not present) [etch] - linux-2.6 <not-affected> (Vulnerable code not present) CVE-2008-4409 (libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities ...) - - libxml2 <not-affected> (Vulnerable code not present, introduced in 2.7.0) - TODO: check again if >= 2.7 gets uploaded + - libxml2 <not-affected> + [lenny] - libxml2 <not-affected> (Vulnerable code not present) + [etch] - libxml2 <not-affected> (Vulnerable code not present) + NOTE: The bug affects only to 2.7.0 and 2.7.1 CVE-2008-4406 (A certain Debian patch to the run scripts for sabre (aka xsabre) ...) - sabre 0.2.4b-25 (low; bug #433996) [etch] - sabre <no-dsa> (Game not qualified as multi-user system, thus minor issue)