jmm-guest at alioth.debian.org
2009-Jan-12 23:56 UTC
[Secure-testing-commits] r10942 - data/CVE
Author: jmm-guest
Date: 2009-01-12 23:56:46 +0000 (Mon, 12 Jan 2009)
New Revision: 10942
Modified:
data/CVE/list
Log:
new kernel issue already resolved
mplayer issue just a crasher
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-01-12 21:27:47 UTC (rev 10941)
+++ data/CVE/list 2009-01-12 23:56:46 UTC (rev 10942)
@@ -809,8 +809,11 @@
NOTE: unlike the advisory states it is DSA_do_verify not DSA_verify
NOTE: low severity because it is believed hard to trigger and only
NOTE: affects DNSSEC with DSA, which is supposedly rarely used.
-CVE-2009-0024
+CVE-2009-0024 [sys_remap_file_pages privilege escalation]
RESERVED
+ - linux-2.6 2.6.24-4
+ [etch] - linux-2.6 <not-affected> (Introduced in 2.6.23)
+ NOTE: Fixed in 2.6.24 before initial upload
CVE-2009-0023
RESERVED
CVE-2009-0022 (Samba 3.2.0 through 3.2.6, when registry shares are enabled,
allows ...)
@@ -3223,7 +3226,7 @@
NOT-FOR-US: PHP Arsivimiz Php Ziyaretci Defteri
CVE-2008-4610 (MPlayer allows remote attackers to cause a denial of service
...)
{DTSA-181-1}
- - mplayer 1.0~rc2-20 (low; bug #407010)
+ - mplayer 1.0~rc2-20 (unimportant; bug #407010)
NOTE: only the aac issue affected mplayer because it built against a copy of
faad
NOTE: the ogm issue is a problem in ffmpeg
- ffmpeg-debian <unfixed> (unimportant; bug #509616)