white at alioth.debian.org
2007-Oct-08 10:47 UTC
[Secure-testing-commits] r6864 - data/CVE
Author: white
Date: 2007-10-08 10:47:48 +0000 (Mon, 08 Oct 2007)
New Revision: 6864
Modified:
data/CVE/list
Log:
CVE-2007-1320 and CVE-2007-0998 fixed in unstable and testing
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-10-08 10:04:08 UTC (rev 6863)
+++ data/CVE/list 2007-10-08 10:47:48 UTC (rev 6864)
@@ -9155,7 +9155,7 @@
CVE-2007-1320 (Multiple heap-based buffer overflows in the
cirrus_invalidate_region ...)
{DSA-1384-1 DSA-1284-1 DTSA-38-1}
- qemu 0.9.0-2 (bug #424070)
- - xen-3 <unfixed> (bug #444007; medium)
+ - xen-3 3.1.0-2 (bug #444007; medium)
- xen-3.0 <removed>
CVE-2007-1319 (Unspecified vulnerability in the IOPCServer::RemoveGroup
function in ...)
NOT-FOR-US: DeviceXPlorer OLE
@@ -10201,7 +10201,6 @@
CVE-2007-0999 (Format string vulnerability in Ekiga 2.0.3, and probably other
...)
- ekiga 2.0.3-5 (bug #414069; high)
CVE-2007-0998 (The VNC server implementation in QEMU, as used by Xen and
possibly ...)
- TODO: Check xen-3
- xen-3.0 <removed> (bug #436250; medium)
[etch] - xen-3.0 <unfixed>
NOTE: Fedora disabled the VNC access to the Qemu monitor