jmm-guest at alioth.debian.org
2008-Nov-06 22:07 UTC
[Secure-testing-commits] r10317 - data/CVE
Author: jmm-guest Date: 2008-11-06 22:07:07 +0000 (Thu, 06 Nov 2008) New Revision: 10317 Modified: data/CVE/list Log: let''s not exaggerate things Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-06 22:01:06 UTC (rev 10316) +++ data/CVE/list 2008-11-06 22:07:07 UTC (rev 10317) @@ -415,8 +415,11 @@ - eog 2.22.3-2 (bug #504352; low) [etch] - eog <not-affected> (Vulnerable code not present) CVE-2008-XXXX [htop display corruption] - - htop <unfixed> (low; bug #504144) + - htop <unfixed> (unimportant; bug #504144) NOTE: CVE id requested + NOTE: That scenario is too constructed to call it a security issue, especially + NOTE: given that the standard top will display the maliciously hidden processes + NOTE: just fine. CVE-2008-XXXX [dia: Python scripts load modules from current directory] - dia <unfixed> (low; bug #504251) [etch] - dia <no-dsa> (Minor issue, only vulnerable when called from certain dir)