jmm-guest at alioth.debian.org
2008-Dec-28 20:16 UTC
[Secure-testing-commits] r10818 - data/CVE
Author: jmm-guest Date: 2008-12-28 20:16:44 +0000 (Sun, 28 Dec 2008) New Revision: 10818 Modified: data/CVE/list Log: - gpsdrive CVEfied - konqueror browser crash Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-28 20:14:51 UTC (rev 10817) +++ data/CVE/list 2008-12-28 20:16:44 UTC (rev 10818) @@ -13,7 +13,8 @@ CVE-2008-5713 (The __qdisc_run function in net/sched/sch_generic.c in the Linux ...) TODO: check CVE-2008-5712 (The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to ...) - TODO: check + - kdebase <unfixed> (unimportant) + NOTE: Browser crashes not treated as security issues CVE-2008-5711 (Heap-based buffer overflow in the Facebook PhotoUploader ActiveX ...) NOT-FOR-US: Facebook PhotoUploader ActiveX CVE-2008-5710 (Multiple unspecified vulnerabilities in the web management interface ...) @@ -25,9 +26,9 @@ CVE-2008-5707 (SQL injection vulnerability in urunler.asp in Iltaweb Alisveris ...) NOT-FOR-US: Iltaweb Alisveris Sistemi CVE-2008-5704 (src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might ...) - TODO: check + - gpsdrive <unfixed> (bug #508597) CVE-2008-5703 (gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to ...) - TODO: check + - gpsdrive <unfixed> (bug #508597) CVE-2008-5702 (Buffer underflow in the ibwdt_ioctl function in ...) TODO: check CVE-2008-5701 (Array index error in arch/mips/kernel/scall64-o32.S in the Linux ...) @@ -596,8 +597,6 @@ - moodle 1.8.2.dfsg-2 (bug #508909) [etch] - moodle <not-affected> (Vulnerable code not present) NOTE: moodle recently copied roundcube''s html2text due to their copy being non-free -CVE-2008-XXXX [other symlink attack vectors in gpsdrive] - - gpsdrive <unfixed> (bug #508597) CVE-2008-5485 RESERVED CVE-2008-5484