Author: jmm-guest Date: 2010-12-13 17:55:22 +0000 (Mon, 13 Dec 2010) New Revision: 15695 Modified: data/CVE/list Log: - calendarserver fixed - pybliographer tpu fix - echoping bug not a security issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-12-13 16:57:41 UTC (rev 15694) +++ data/CVE/list 2010-12-13 17:55:22 UTC (rev 15695) @@ -518,9 +518,6 @@ NOT-FOR-US: SiteEngine CVE-2008-7267 (SQL injection vulnerability in announcements.php in SiteEngine 5.x ...) NOT-FOR-US: SiteEngine -CVE-2010-XXXX [echoping buffer overflows] - - echoping <unfixed> (low; bug #606808) - NOTE: not sure if any of these are real security concerns CVE-2010-XXXX [elfsign uses cryptographically weak md5 hashes] - elfsign <unfixed> (low; bug #555668) [lenny] - elfsign <no-dsa> (a stronger hashing algorithm would completely change functionality of the package) @@ -649,8 +646,9 @@ - opendnssec 1.1.3-2 (low; bug #605161) CVE-2010-XXXX [python path] - pybliographer 1.2.14-3 (low; bug #605153) + [squeeze] - pybliographer 1.2.12-4squeeze1 CVE-2010-XXXX [python path] - - calendarserver <unfixed> (low; bug #605157) + - calendarserver 2.4.dfsg-2.1 (low; bug #605157) [lenny] - calendarserver <no-dsa> (Minor issue) CVE-2010-XXXX [python path] - gquilt 0.22-1.1 (low; bug #605152) @@ -2285,7 +2283,7 @@ - drupal6 6.18-1 (low; bug #592716) CVE-2010-4340 [libcloud doesn''t verify SSL certificate] RESERVED - - libcloud <unfixed> (bug #598463) + - libcloud <unfixed> (low; bug #598463) CVE-2010-3688 (Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA ...) NOT-FOR-US: NetArtMEDIA WebSiteAdmin CVE-2010-3684 (The FTP authentication module in Synology Disk Station 2.x logs ...)