keescook-guest at alioth.debian.org
2007-Aug-16 00:19 UTC
[Secure-testing-commits] r6331 - data/CVE
Author: keescook-guest Date: 2007-08-16 00:19:22 +0000 (Thu, 16 Aug 2007) New Revision: 6331 Modified: data/CVE/list Log: not-affected: samba, etch/sarge added for libvorbis Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-08-15 22:36:38 UTC (rev 6330) +++ data/CVE/list 2007-08-16 00:19:22 UTC (rev 6331) @@ -649,6 +649,7 @@ CVE-2007-4045 (The CUPS service on SUSE Linux before 20070720 allows remote attackers ...) - cupsys <not-affected> (SuSE-specific regression) CVE-2007-4044 (Incomplete blacklist vulnerability in the MS-RPC functionality in smbd ...) + - samba <not-affected> (SuSE-specific regression) NOTE: I''ve contacted SuSE: It''s a functional regression in SuSE, not a security problem CVE-2007-4043 (file.cgi in Secure Computing SecurityReporter (aka Network Security ...) NOT-FOR-US: Secure Computing SecurityReporter @@ -2832,6 +2833,8 @@ NOTE: Not reproducibly reliably by an attacker, mostly a bug CVE-2007-3106 (libvorbis 1.1.2, and possibly other versions before 1.2.0, allows ...) - libvorbis 1.2.0.dfsg-1 (medium) + [etch] - libvorbis <unfixed> (bug #437916; medium) + [sarge] - libvorbis <unfixed> (bug #437916; medium) CVE-2007-3105 (Stack-based buffer overflow in the random number generator (RNG) ...) - linux-2.6 <unfixed> CVE-2007-3104 (The sysfs_readdir function in the Linux kernel in Red Hat Enterprise ...)