jmm-guest at alioth.debian.org
2007-Dec-01 09:27 UTC
[Secure-testing-commits] r7450 - data/CVE
Author: jmm-guest Date: 2007-12-01 09:27:04 +0000 (Sat, 01 Dec 2007) New Revision: 7450 Modified: data/CVE/list Log: asterisk DSA about to come soon Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-01 09:14:13 UTC (rev 7449) +++ data/CVE/list 2007-12-01 09:27:04 UTC (rev 7450) @@ -132,10 +132,10 @@ - ruby-gnome2 <unfixed> (medium; bug #453689) CVE-2007-6171 (SQL injection vulnerability in the Postgres Realtime Engine ...) - asterisk <unfixed> (medium) - NOTE: maintainer is aware of it, preparing upload atm + [sarge] - asterisk <not-affected> (Vulnerable code not present) + [etch] - asterisk <not-affected> (Vulnerable code not present) CVE-2007-6170 (SQL injection vulnerability in the Call Detail Record Postgres logging ...) - asterisk <unfixed> (medium) - NOTE: maintainer is aware of it, preparing upload atm CVE-2007-XXXX [rsync is prone to symlink attacks] - rsync <unfixed> (low; bug #453652) CVE-2007-6150 (The "internal state tracking" code for the random and urandom devices ...)