white at alioth.debian.org
2008-Nov-08 07:44 UTC
[Secure-testing-commits] r10333 - data/CVE
Author: white Date: 2008-11-08 07:44:09 +0000 (Sat, 08 Nov 2008) New Revision: 10333 Modified: data/CVE/list Log: aegis issue(s) CVEified Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-08 06:58:48 UTC (rev 10332) +++ data/CVE/list 2008-11-08 07:44:09 UTC (rev 10333) @@ -25,7 +25,8 @@ - dpkg-cross <unfixed> (unimportant; bug #496413) NOTE: executed under a chroot when a package failed to cross-build CVE-2008-4938 (aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary ...) - TODO: check + - aegis 4.24-3.1 (low; bug #496400) + [etch] - aegis <no-dsa> (Minor issue) CVE-2008-4934 (The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the ...) TODO: check CVE-2008-4933 (Buffer overflow in the hfsplus_find_cat function in ...) @@ -1223,12 +1224,6 @@ CVE-2008-4475 (ibackup 2.27 allows local users to overwrite arbitrary files via a ...) - ibackup <removed> (low; bug #496432) [etch] - ibackup <no-dsa> (Minor issues) -CVE-2008-XXXX [aegis-web: insecure temp file] - - aegis 4.24-3.1 (low; bug #496400) - [etch] - aegis <no-dsa> (Minor issue) -CVE-2008-XXXX [aegis: insecure temp files] - - aegis <unfixed> (unimportant; bug #496402) - NOTE: Only present in example scripts CVE-2008-4401 (ActionScript in Adobe Flash Player 9.0.124.0 and earlier does not ...) - flashplugin-nonfree 1.7.2 [etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)