jmm-guest at alioth.debian.org
2008-Aug-07 13:29 UTC
[Secure-testing-commits] r9530 - data/CVE
Author: jmm-guest Date: 2008-08-07 13:29:24 +0000 (Thu, 07 Aug 2008) New Revision: 9530 Modified: data/CVE/list Log: I have some doubts that the latest OO issues is really of concern for Debian Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-08-07 11:02:16 UTC (rev 9529) +++ data/CVE/list 2008-08-07 13:29:24 UTC (rev 9530) @@ -95,6 +95,7 @@ NOT-FOR-US: Apple Mac OS X CVE-2008-3437 (OpenOffice.org (OOo) before 2.1.0 does not properly verify the ...) - openoffice.org <unfixed> (low; bug #494100) + NOTE: This should only affect builds provided by Sun, not the Debian packaging CVE-2008-3436 (The GUP generic update process in Notepad++ before 4.8.1 does not ...) NOT-FOR-US: Notepad++ CVE-2008-3435 (LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly ...)
Nico Golde
2008-Aug-07 16:30 UTC
[Secure-testing-team] [Secure-testing-commits] r9530 - data/CVE
Heyho, * jmm-guest at alioth.debian.org <jmm-guest at alioth.debian.org> [2008-08-07 18:24]:> Author: jmm-guest > Date: 2008-08-07 13:29:24 +0000 (Thu, 07 Aug 2008) > New Revision: 9530 > > Modified: > data/CVE/list > Log: > I have some doubts that the latest OO issues is really of concern > for Debian > > > Modified: data/CVE/list > ==================================================================> --- data/CVE/list 2008-08-07 11:02:16 UTC (rev 9529) > +++ data/CVE/list 2008-08-07 13:29:24 UTC (rev 9530) > @@ -95,6 +95,7 @@ > NOT-FOR-US: Apple Mac OS X > CVE-2008-3437 (OpenOffice.org (OOo) before 2.1.0 does not properly verify the ...) > - openoffice.org <unfixed> (low; bug #494100) > + NOTE: This should only affect builds provided by Sun, not the Debian packagingI am not an OO user myself, the reason I opened this is that I am not sure if the update feature is not available in the Debian package (e.g. patched) or if it just doesn''t make sense to use it but users can still do that. Do you know more? Kind regards Nico -- Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20080807/78ca8c0f/attachment.pgp