thr3ads.net - Secure testing commits - [Secure-testing-commits] r10501

If this information is useful, please help other people find it:
Share via:

jmm-guest at alioth.debian.org

2008-Nov-28 19:14 UTC

[Secure-testing-commits] r10501 - data/CVE

Author: jmm-guest
Date: 2008-11-28 19:14:26 +0000 (Fri, 28 Nov 2008)
New Revision: 10501

Modified:
   data/CVE/list
Log:
ecryptfs-utils no-dsa
record two targeted lenny fixes
vbox CVEfied


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-11-28 18:43:21 UTC (rev 10500)
+++ data/CVE/list	2008-11-28 19:14:26 UTC (rev 10501)
@@ -138,6 +138,7 @@
 	- rails 2.1.0-6 (low)
 CVE-2008-5188 (The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential,
and ...)
 	- ecryptfs-utils 66-1 (low)
+        [lenny] - ecryptfs-utils <no-dsa> (Minor issue)
 CVE-2008-5184 (The web interface (cgi-bin/admin.c) in CUPS before 1.3.8 uses
the ...)
 	- cups 1.3.8-1
 	TODO: check if version in etch is affected
@@ -256,6 +257,7 @@
 	- jailer 0.4-15
 CVE-2008-5138 (passwdehd in libpam-mount 0.43 allows local users to overwrite
...)
 	- libpam-mount 1.2+gitaa4791f-1 (low)
+        [lenny] - libpam-mount 0.44-1+lenny2
 CVE-2008-5137 (tkman in tkman 2.2 allows local users to overwrite arbitrary
files via ...)
 	- tkman <unfixed> (bug #506496)
 CVE-2008-5136 (tkusr in tkusr 0.82 allows local users to overwrite arbitrary
files ...)
@@ -991,7 +993,7 @@
 CVE-2008-XXXX [dia: Python scripts load modules from current directory]
 	- dia 0.96.1-7.1 (low; bug #504251)
 	[etch] - dia <no-dsa> (Minor issue, only vulnerable when called from
certain dir)
-CVE-2008-XXXX [virtualbox-ose: insecure temp file usage]
+CVE-2008-5256 [virtualbox-ose: insecure temp file usage]
 	- virtualbox-ose 1.6.6-dfsg-3 (low; bug #504149)
 CVE-2008-4801 (Heap-based buffer overflow in the Data Protection for SQL CAD
service ...)
 	NOT-FOR-US: SQL CAD service
@@ -1990,6 +1992,7 @@
 CVE-2008-4965 (liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to
overwrite ...)
 	{DTSA-177-1 DTSA-178-1}
 	- liquidsoap 0.3.8.1+2-2 (low; bug #496360)
+        [lenny] - liquidsoap 0.3.6-4+lenny1
 CVE-2008-4966 (linux-patch-openswan 2.4.12 allows local users to overwrite
arbitrary ...)
 	- openswan <unfixed> (unimportant; bug #496376)
 	NOTE: Only unused packaging bits

Secure testing commits - Nov 2008 - r10501 - data/CVE

[Secure-testing-commits] r10501 - data/CVE