Author: jmm-guest Date: 2010-12-20 07:25:58 +0000 (Mon, 20 Dec 2010) New Revision: 15718 Modified: data/CVE/list Log: nordugrid-arc-nox fixed amend openssl entry now that openssl 1.0.0c was uploaded to experimental Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-12-18 23:22:58 UTC (rev 15717) +++ data/CVE/list 2010-12-20 07:25:58 UTC (rev 15718) @@ -3197,8 +3197,7 @@ RESERVED - paxtest 1:0.9.9-1 (unimportant; bug #598413) CVE-2010-3372 (Untrusted search path vulnerability in NorduGrid Advanced Resource ...) - - nordugrid-arc-nox <unfixed> (bug #606151) - NOTE: already fixed upstream; maintainer was aware already + - nordugrid-arc-nox 1.1.0~rc6-2.1 (bug #606151) CVE-2010-3371 RESERVED CVE-2010-3370 @@ -7858,8 +7857,7 @@ - python2.4 <removed> (low) [lenny] - python2.4 <no-dsa> (Minor issue) CVE-2010-1633 (RSA verification recovery in the EVP_PKEY_verify_recover function in ...) - - openssl <not-affected> (This bug is only present in OpenSSL 1.0.0) - TODO: recheck once >= 1.0.0 gets uploaded + - openssl <not-affected> (This bug is only present in OpenSSL 1.0.0, first version of 1.0.0 ever uploaded was 1.0.0c) CVE-2010-1632 (Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server ...) - axis2c 1.6.0-1 CVE-2010-1631