jmm-guest at alioth.debian.org
2008-Jan-22 22:12 UTC
[Secure-testing-commits] r8014 - data/CVE
Author: jmm-guest
Date: 2008-01-22 22:12:21 +0000 (Tue, 22 Jan 2008)
New Revision: 8014
Modified:
data/CVE/list
Log:
general rule of thumb: don''t add suite-specific <unfixed> tags
unless
you want to cover a special case
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-01-22 21:47:35 UTC (rev 8013)
+++ data/CVE/list 2008-01-22 22:12:21 UTC (rev 8014)
@@ -8026,8 +8026,6 @@
CVE-2007-4029 (libvorbis 1.1.2, and possibly other versions before 1.2.0,
allows ...)
{DSA-1471-1}
- libvorbis 1.2.0.dfsg-1 (medium)
- [etch] - libvorbis <unfixed> (bug #437916; medium)
- [sarge] - libvorbis <unfixed> (bug #437916; medium)
NOTE: svn revisions fixing this
https://bugzilla.redhat.com/show_bug.cgi?id=249780
CVE-2007-4028 (Absolute path traversal vulnerability in index.php in Webspell
4.01.02 ...)
NOT-FOR-US: WebSPELL