nion at alioth.debian.org
2008-Oct-17 11:53 UTC
[Secure-testing-commits] r10106 - data/CVE
Author: nion Date: 2008-10-17 11:53:29 +0000 (Fri, 17 Oct 2008) New Revision: 10106 Modified: data/CVE/list Log: CVE-2008-4247 fixed in ftpd-ssl 0.17.27+0.3-3 CVE-2008-3949 fixed in emacs22 22.2+2-4 CVE-2008-2938 fixed in tomcat5.5 5.5.26-5 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-17 09:14:11 UTC (rev 10105) +++ data/CVE/list 2008-10-17 11:53:29 UTC (rev 10106) @@ -908,7 +908,7 @@ CVE-2008-XXXX [lustre: insecure temp files] - lustre 1.6.5.1-1 (low; bug #496371) CVE-2008-4247 (ftpd in OpenBSD 4.3, FreeBSD 7.0, and NetBSD 4.0 interprets long ...) - - ftpd-ssl <unfixed> (bug #500518) + - ftpd-ssl 0.17.27+0.3-3 (bug #500518) - ftpd <unfixed> (bug #500278) CVE-2008-XXXX [possible script injection via /etc/wordpress/wp-config.php] - wordpress <unfixed> (bug #500295; unimportant) @@ -1479,7 +1479,7 @@ CVE-2008-3950 (Off-by-one error in the ...) - webkit <not-affected> (Vulnerable code not present) CVE-2008-3949 (Emacs 22.1 and 22.2 imports Python script from the current working ...) - - emacs22 <unfixed> (low; bug #499568) + - emacs22 22.2+2-4 (low; bug #499568) - emacs21 <not-affected> (doesn''t provide the python functionality) - xemacs21 <not-affected> (doesn''t provide the python functionality) CVE-2008-3948 (SQL injection vulnerability in admin/users/self-2.php in XRMS allows ...) @@ -3937,7 +3937,7 @@ [etch] - apache2 <no-dsa> (minor issue; fix will be in 2.2.3-4+etch6) - apache <not-affected> (vulnerable code not present) CVE-2008-2938 (Directory traversal vulnerability in Apache Tomcat 4.1.0 through ...) - - tomcat5.5 <unfixed> (low; bug #496309) + - tomcat5.5 5.5.26-5 (low; bug #496309) - tomcat6 <unfixed> (low) CVE-2008-2937 (Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a ...) - postfix 2.5.4-1 (low)