Author: jmm-guest Date: 2006-04-01 12:29:04 +0000 (Sat, 01 Apr 2006) New Revision: 3728 Modified: data/CVE/list Log: another rpath issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-03-31 13:24:33 UTC (rev 3727) +++ data/CVE/list 2006-04-01 12:29:04 UTC (rev 3728) @@ -114,6 +114,9 @@ CVE-2006-XXXX [subversion rpath set to /tmp] - subversion 1.3.0-5 (bug #359234; low) [sarge] - subversion <not-affected> (No rpaths set in Sarge) +CVE-2006-XXXX [libtunepimp rpath set to /tmp] + - libtunepimp <unfixed> (bug #359241; low) + [sarge] - libtunepimp <not-affected> (rpath not set to /tmp in Sarge) CVE-2006-XXXX [gpib rpath set to /tmp] - gpib <unfixed> (bug #359239; low) [sarge] - gpib <not-affected> (rpath not set to /tmp in Sarge) @@ -374,7 +377,7 @@ CVE-2006-1377 (Cross-site scripting (XSS) vulnerability in img.php in (1) EasyMoblog ...) NOT-FOR-US: EasyMoblog CVE-2006-1376 (The installation of Debian GNU/Linux 3.1r1 from the network install CD ...) - - passwd 1:4.0.14-9 (bug #358210) + - passwd 1:4.0.14-9 (bug #358210; bug #356939) CVE-2006-1375 (AdMan 1.0.20051221 and earlier allows remote attackers to obtain the ...) NOT-FOR-US: AdMan CVE-2006-1374 (SQL injection vulnerability in viewStatement.php in AdMan 1.0.20051221 ...)