jmm-guest at alioth.debian.org
2007-Nov-22 22:13 UTC
[Secure-testing-commits] r7374 - data/CVE
Author: jmm-guest
Date: 2007-11-22 22:13:46 +0000 (Thu, 22 Nov 2007)
New Revision: 7374
Modified:
data/CVE/list
Log:
glib/pcre unimportant unimportant since only the udeb is affected
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-11-22 21:15:56 UTC (rev 7373)
+++ data/CVE/list 2007-11-22 22:13:46 UTC (rev 7374)
@@ -3824,15 +3824,18 @@
CVE-2007-4768 (Heap-based buffer overflow in Perl-Compatible Regular Expression
...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-4767 (Perl-Compatible Regular Expression (PCRE) library before 7.3
does not ...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-4766 (Multiple integer overflows in Perl-Compatible Regular Expression
...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-4765
RESERVED
CVE-2007-XXXX [wordpress: Users without unfiltered_html capability can post
arbitrary html]
@@ -11182,19 +11185,23 @@
CVE-2007-1662 (Perl-Compatible Regular Expression (PCRE) library before 7.3
reads ...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-1661 (Perl-Compatible Regular Expression (PCRE) library before 7.3
...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-1660 (Perl-Compatible Regular Expression (PCRE) library before 7.3
does not ...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-1659 (Perl-Compatible Regular Expression (PCRE) library before 7.3
allows ...)
{DSA-1399-1 DTSA-77-1}
- pcre3 7.3-1
- - glib2.0 2.14.3-1
+ - glib2.0 2.14.3-1 (unimportant)
+ NOTE: glib only embeds pcre in the udeb, no attack vector
CVE-2007-1658 (Windows Mail in Microsoft Windows Vista might allow
user-assisted ...)
NOT-FOR-US: Microsoft
CVE-2007-1657 (Stack-based buffer overflow in the file_compress function in
minigzip ...)