Author: jmm-guest Date: 2009-05-13 17:41:40 +0000 (Wed, 13 May 2009) New Revision: 11891 Modified: data/CVE/list Log: jasper actually unfixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-05-13 15:55:50 UTC (rev 11890) +++ data/CVE/list 2009-05-13 17:41:40 UTC (rev 11891) @@ -30679,7 +30679,8 @@ CVE-2007-2722 (Unspecified vulnerability in NewzCrawler 1.8 allows remote attackers ...) NOT-FOR-US: NewzCrawler CVE-2007-2721 (The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer ...) - - jasper 1.900.1-3 (medium; bug #413033) + - jasper <unfixed> (medium; bug #413033) + NOTE: Jasper was initially fixed in 1.900.1-3, but the fix got dropped later, see #528543 - ghostscript 8.61.dfsg.1~svn8187-1.1 (medium; bug #447188) NOTE: see http://ghostscript.com/pipermail/gs-cvs/2007-October/007877.html CVE-2007-2720 (Group-Office before 2.16-13 does not properly validate user IDs, which ...)