thr3ads.net - Secure testing commits - [Secure-testing-commits] r8330

If this information is useful, please help other people find it:
Share via:

jmm-guest at alioth.debian.org

2008-Mar-14 14:59 UTC

[Secure-testing-commits] r8330 - data/CVE

Author: jmm-guest
Date: 2008-03-14 14:59:11 +0000 (Fri, 14 Mar 2008)
New Revision: 8330

Modified:
   data/CVE/list
Log:
not-affected is used incorrectly, since earlier versions from oldstable
  and stable are affected as well


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-03-14 13:01:06 UTC (rev 8329)
+++ data/CVE/list	2008-03-14 14:59:11 UTC (rev 8330)
@@ -1497,9 +1497,12 @@
 CVE-2008-0598
 	RESERVED
 CVE-2008-0597 (Use-after-free vulnerability in CUPS before 1.1.22, and possibly
other ...)
-	- cupsys <not-affected> (mimeDeleteType included since 1.2.x)
+	- cupsys 1.2 
+	NOTE: (mimeDeleteType included since 1.2.x
 CVE-2008-0596 (Memory leak in CUPS before 1.1.22, and possibly other versions,
allows ...)
-	- cupsys <not-affected> (version in unstable has better array handling
and is not vulnerable, exact version unknown)
+	- cupsys 1.3.6
+	NOTE: version in unstable has better array handling and is not vulnerable,
exact version unknown
+	TODO: validate exact fixed version
 CVE-2008-0595 (dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20,
recognizes ...)
 	- dbus 1.1.20-1
 CVE-2008-0594 (Mozilla Firefox before 2.0.0.12 does not always display a web
forgery ...)

Secure testing commits - Mar 2008 - r8330 - data/CVE

[Secure-testing-commits] r8330 - data/CVE