Author: nion Date: 2007-12-04 16:37:00 +0000 (Tue, 04 Dec 2007) New Revision: 7501 Modified: data/CVE/list Log: CVE-2007-6209 fixed in zsh 4.3.4-dev-3-2 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-04 13:41:11 UTC (rev 7500) +++ data/CVE/list 2007-12-04 16:37:00 UTC (rev 7501) @@ -7,7 +7,7 @@ CVE-2007-6211 [privilege escalation in sing] - sing <unfixed> (high; bug #454167) CVE-2007-6209 [insecure tmp file handling in difflog.pl shipped by zsh] - - zsh <unfixed> (low; bug #454073) + - zsh 4.3.4-dev-3-2 (low; bug #454073) CVE-2007-6201 (Unspecified vulnerability in Wesnoth before 1.2.8 allows attackers to ...) - wesnoth 1:1.2.8-1 (low) CVE-2007-6200 (Unspecified vulnerability in rsync before 3.0.0pre6, when running a ...) @@ -2245,7 +2245,7 @@ CVE-2007-5504 (Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and ...) NOT-FOR-US: Oracle CVE-2007-5503 (Multiple integer overflows in Cairo before 1.4.12 might allow remote ...) - - libcairo <unfixed> (medium; bug #453686) + - libcairo 1.4.10-1.1 (medium; bug #453686) CVE-2007-5502 (The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does ...) NOT-FOR-US: OpenSSL Fips object module CVE-2007-5501 (The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux ...)