white at alioth.debian.org
2008-Sep-15 11:34 UTC
[Secure-testing-commits] r9826 - data/CVE
Author: white
Date: 2008-09-15 11:34:26 +0000 (Mon, 15 Sep 2008)
New Revision: 9826
Modified:
data/CVE/list
Log:
openoffice.org not affected
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-09-15 11:26:38 UTC (rev 9825)
+++ data/CVE/list 2008-09-15 11:34:26 UTC (rev 9826)
@@ -1731,7 +1731,10 @@
CVE-2008-3283 (Multiple memory leaks in Red Hat Directory Server 7.1 before
SP7, Red ...)
NOT-FOR-US: Red Hat Directory Server
CVE-2008-3282 (Integer overflow in the rtl_allocateMemory function in ...)
- TODO: check
+ - openoffice.org <not-affected> (openoffice in Debian does not use the
custom allocations but g/malloc)
+ NOTE: see ooo-build/distro-configs/CommonLinux.conf.in, openoffice builds on
Debian using
+ NOTE: --with-alloc=system which causes the build scripts to use the system
allocators instead of the
+ NOTE: custom ones
CVE-2008-3281 (libxml2 2.6.32 and earlier does not properly detect recursion
during ...)
{DSA-1631-1 DTSA-158-1}
- libxml2 2.6.32.dfsg-3 (medium)