nion at alioth.debian.org
2008-Nov-30 10:34 UTC
[Secure-testing-commits] r10558 - data/CVE
Author: nion
Date: 2008-11-30 10:34:10 +0000 (Sun, 30 Nov 2008)
New Revision: 10558
Modified:
data/CVE/list
Log:
remove temporary xine CVE id, we track those in single bugs now
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-11-30 10:26:14 UTC (rev 10557)
+++ data/CVE/list 2008-11-30 10:34:10 UTC (rev 10558)
@@ -20,7 +20,7 @@
CVE-2008-5247 (The real_parse_audio_specific_data function in demux_real.c in
...)
TODO: check
CVE-2008-5246 (Multiple heap-based buffer overflows in xine-lib before 1.1.15
allow ...)
- - xine-lib <unfixed> (low; bug #507184)
+ - xine-lib <unfixed> (low; bug #507184; bug #498243)
CVE-2008-5245 (xine-lib before 1.1.15 performs V4L video frame preallocation
before ...)
TODO: check
CVE-2008-5244 (Unspecified vulnerability in xine-lib before 1.1.15 has unknown
impact ...)
@@ -28,7 +28,7 @@
CVE-2008-5243 (The real_parse_headers function in demux_real.c in xine-lib
1.1.12, ...)
TODO: check
CVE-2008-5242 (demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier
versions, ...)
- - xine-lib <unfixed> (medium; bug #507165)
+ - xine-lib <unfixed> (medium; bug #507165; bug #498243)
CVE-2008-5241 (Integer underflow in demux_qt.c in xine-lib 1.1.12, and other
1.1.15 ...)
TODO: check
CVE-2008-5240 (xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies
on an ...)
@@ -3137,9 +3137,6 @@
NOTE: been introduced later, but pngtest.c is affected. However, there
NOTE: is no known exploit.
end claimed by white
-CVE-2008-XXXX [multiple heap based overflows in xine-lib]
- - xine-lib <unfixed> (medium; bug #498243)
- NOTE: CVE ids requested
CVE-2008-3912 (libclamav in ClamAV before 0.94 allows attackers to cause a
denial of ...)
{DSA-1660-1}
- clamav 0.94.dfsg-1