jmm-guest at alioth.debian.org
2008-Nov-29 23:21 UTC
[Secure-testing-commits] r10542 - data/CVE
Author: jmm-guest Date: 2008-11-29 23:21:28 +0000 (Sat, 29 Nov 2008) New Revision: 10542 Modified: data/CVE/list Log: * re-no-dsa blender issue, scheduled for point update * ltp no-dsa * the lynx entry is wrong: In Etch there are two source packages, lynx and lynx-cur. I''ve verified that stock lynx is not affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-29 23:18:54 UTC (rev 10541) +++ data/CVE/list 2008-11-29 23:21:28 UTC (rev 10542) @@ -254,6 +254,7 @@ NOTE: unsafe code is in example script CVE-2008-5145 (ltpmenu in ltp 20060918 allows local users to overwrite arbitrary ...) - ltp <unfixed> (bug #506272) + [etch] - ltp <no-dsa> (Minor issue) NOTE: this is not the same as CVE-2008-4969 CVE-2008-5144 (nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local ...) - nvidia-cg-toolkit <unfixed> (unimportant) @@ -862,7 +863,9 @@ - python2.4 2.4.5-6 (bug #504620) CVE-2008-4863 (Untrusted search path vulnerability in BPY_interface in Blender 2.46 ...) - blender 2.46+dfsg-5 (bug #503632; low) - [etch] - blender 2.42a-8 + [etch] - blender <no-dsa> (Minor issue) + TODO: [etch] - blender 2.42a-8 + NOTE: Scheduled for r6 CVE-2008-4862 RESERVED CVE-2008-4861 @@ -1154,7 +1157,8 @@ CVE-2008-4740 (Directory traversal vulnerability in templater.php in the ZZ_Templater ...) NOT-FOR-US: ZZ_Templater module in TinyCMS CVE-2006-7234 (Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows ...) - - lynx 2.8.7dev4-1 (low) + - lynx-cur 2.8.7dev4-1 (low) + - lynx <not-affected> (Doesn''t include the current directory in the search path) CVE-2008-4748 (Format string vulnerability in the URI handler in KVirc 3.4.0, when ...) - kvirc 2:3.4.0-3 (bug #503401) CVE-2008-XXXX [balazar3: insecure temp file handling]