dannf at alioth.debian.org
2007-May-31 22:13 UTC
[Secure-testing-commits] r5954 - data/CVE
Author: dannf Date: 2007-05-31 22:13:14 +0000 (Thu, 31 May 2007) New Revision: 5954 Modified: data/CVE/list Log: sarge is not vulnerable to CVE-2007-1841 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-05-31 21:14:07 UTC (rev 5953) +++ data/CVE/list 2007-05-31 22:13:14 UTC (rev 5954) @@ -2123,6 +2123,7 @@ NOT-FOR-US: JSBoard CVE-2007-1841 (The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in ...) - ipsec-tools <unfixed> (medium) + [sarge] - ipsec-tools <not-affected> the older stream of development used in the sarge package is not vulnerable - a code change that went into that branch coincidentally fixed it and this change was already there in sarge CVE-2006-7192 (Microsoft ASP .NET Framework 2.0.50727.42 does not properly handle ...) NOT-FOR-US: Microsoft ASP .NET Framework CVE-2005-4837 (snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before ...)