jmm-guest at alioth.debian.org
2008-Nov-20 22:30 UTC
[Secure-testing-commits] r10442 - data/CVE
Author: jmm-guest Date: 2008-11-20 22:30:16 +0000 (Thu, 20 Nov 2008) New Revision: 10442 Modified: data/CVE/list Log: mark issues affecting example files are unimportant it would still be nice if someone could report them as bug reports with severity "normal" Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-20 21:38:53 UTC (rev 10441) +++ data/CVE/list 2008-11-20 22:30:16 UTC (rev 10442) @@ -56,25 +56,25 @@ - moodle <unfixed> (unimportant) NOTE: manual editing of file is required to run the unsafe code CVE-2008-5152 (inmail-show in mh-book 200605 allows local users to overwrite ...) - - mh-book <unfixed> (low) + - mh-book <unfixed> (unimportant) NOTE: unsafe code is in example script CVE-2008-5151 (test_parser.py in mayavi 1.5 allows local users to overwrite arbitrary ...) - mayavi <unfixed> (unimportant) NOTE: just a comment, not code CVE-2008-5150 (sample.sh in maildirsync 1.1 allows local users to append data to ...) - - maildirsync <unfixed> (low) + - maildirsync <unfixed> (unimportant) NOTE: unsafe code is in example script CVE-2008-5149 (fwd_check.sh in libncbi6 6.1.20080302 allows local users to overwrite ...) - - ncbi-tools6 <unfixed> (low) + - ncbi-tools6 <unfixed> (unimportant) NOTE: unsafe code is in example script CVE-2008-5148 (sch2eaglepos.sh in geda-gnetlist 1.4.0 allows local users to overwrite ...) - - geda-gnetlist <unfixed> (low) + - geda-gnetlist <unfixed> (unimportant) NOTE: unsafe code is in example script CVE-2008-5147 (test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to ...) - docvert <unfixed> (unimportant) NOTE: unsafe code is in test script with multiple hardcoded files CVE-2008-5146 (add-accession-numbers in ctn 3.0.6 allows local users to overwrite ...) - - ctn <unfixed> (low) + - ctn <unfixed> (unimportant) NOTE: unsafe code is in example script CVE-2008-5145 (ltpmenu in ltp 20060918 allows local users to overwrite arbitrary ...) - ltp <unfixed> (bug #506272)