jmm-guest at alioth.debian.org
2009-Feb-23 18:36 UTC
[Secure-testing-commits] r11253 - data/CVE
Author: jmm-guest Date: 2009-02-23 18:36:02 +0000 (Mon, 23 Feb 2009) New Revision: 11253 Modified: data/CVE/list Log: dbus no-dsa NFU Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-02-23 09:47:10 UTC (rev 11252) +++ data/CVE/list 2009-02-23 18:36:02 UTC (rev 11253) @@ -106,7 +106,7 @@ - ruby1.9 <unfixed> (bug #513528) - ruby1.8 <unfixed> CVE-2009-0641 (sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions ...) - TODO: check + NOT-FOR-US: FreeBSD telnetd (apparently there''s some common code base in netkit-telnet, but it''s not affected CVE-2009-0640 (Directory traversal vulnerability in the administrative web server in ...) NOT-FOR-US: Swann DVR4-SecuraNet CVE-2009-0639 (PHP remote file inclusion vulnerability in moduli/libri/index.php in ...) @@ -5924,7 +5924,8 @@ CVE-2008-4312 RESERVED CVE-2008-4311 (The default configuration of system.conf in D-Bus (aka DBus) before ...) - - dbus 1.2.1-5 (bug #508032) + - dbus 1.2.1-5 (low; bug #508032) + [etch] - dbus <no-dsa> (Backport for Etch too risky for regressions for too little gain) CVE-2008-4310 (httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat ...) - ruby <not-affected> (bug #508030) NOTE: Red Hat-specific