jmm-guest at alioth.debian.org
2007-Nov-01 08:18 UTC
[Secure-testing-commits] r7168 - data/CVE
Author: jmm-guest
Date: 2007-11-01 08:18:29 +0000 (Thu, 01 Nov 2007)
New Revision: 7168
Modified:
data/CVE/list
Log:
- Django is in Debian
- fix package name of vobcopy
- star no-dsa
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-11-01 08:11:35 UTC (rev 7167)
+++ data/CVE/list 2007-11-01 08:18:29 UTC (rev 7168)
@@ -51,7 +51,7 @@
CVE-2007-5713 (Off-by-one error in the GeoIP module in the AMX Mod X 1.76d
plugin for ...)
NOT-FOR-US: Half-Life Server
CVE-2007-5712 (The internationalization (i18n) framework in Django 0.91, 0.95,
...)
- NOT-FOR-US: Django
+ - python-django <unfixed>
CVE-2007-5711 (Massive Entertainment World in Conflict 1.001 and earlier allows
...)
NOT-FOR-US: Conflict
CVE-2007-5710 (Cross-site scripting (XSS) vulnerability in ...)
@@ -59,7 +59,7 @@
CVE-2007-5709 (Stack-based buffer overflow in Sony SonicStage CONNECT Player
(CP) 4.3 ...)
NOT-FOR-US: Sony SonicStage CONNECT Player
CVE-2007-5718 (vobcopy 0.5.14 allows local users to append data to an arbitrary
file, ...)
- - vopcopy <unfixed> (low; bug #448319)
+ - vobcopy <unfixed> (low; bug #448319)
CVE-2007-5706 (Absolute path traversal vulnerability in download.php in Jeebles
...)
NOT-FOR-US: Jeebles
CVE-2007-5705 (Unspecified vulnerability in the Settings component in the ...)
@@ -4402,6 +4402,7 @@
NOTE: https://issues.rpath.com/browse/RPL-1731
CVE-2007-4134 (Directory traversal vulnerability in extract.c in star before
1.5a84 ...)
- star 1.5a67-1.1 (bug #440100; low)
+ [etch] - star <no-dsa> (Minor issue)
CVE-2007-4133 (The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate
functions ...)
{DSA-1381-2}
- linux-2.6 2.6.20-1