thr3ads.net - Secure testing commits - [Secure-testing-commits] r10272

If this information is useful, please help other people find it:
Share via:

nion at alioth.debian.org

2008-Nov-04 11:55 UTC

[Secure-testing-commits] r10272 - data/CVE

Author: nion
Date: 2008-11-04 11:55:46 +0000 (Tue, 04 Nov 2008)
New Revision: 10272

Modified:
   data/CVE/list
Log:
CVE-2008-4870 non-issue

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-11-04 11:16:05 UTC (rev 10271)
+++ data/CVE/list	2008-11-04 11:55:46 UTC (rev 10272)
@@ -25,7 +25,9 @@
 CVE-2008-4871 (Cross-site scripting (XSS) vulnerability in My Little Forum 1.75
and ...)
 	NOT-FOR-US: My Little Forum
 CVE-2008-4870 (dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly
...)
-	TODO: check
+	- dovecot <unfixed> (unimportant)
+	NOTE: by default this file doesnt containt sensitive information and
administrator
+	NOTE: changing this should ensure on its own that the mode is secure
 CVE-2008-4869 (FFmpeg 0.4.9, as used by MPlayer, allows context-dependent
attackers ...)
 	TODO: check
 CVE-2008-4868 (Unspecified vulnerability in the avcodec_close function in ...)

Secure testing commits - Nov 2008 - r10272 - data/CVE

[Secure-testing-commits] r10272 - data/CVE