Author: jmm-guest
Date: 2010-10-14 06:50:18 +0000 (Thu, 14 Oct 2010)
New Revision: 15471
Modified:
data/CVE/list
Log:
krb5 fixed
one pam issue non-exploitable
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-10-13 21:15:07 UTC (rev 15470)
+++ data/CVE/list 2010-10-14 06:50:18 UTC (rev 15471)
@@ -1594,9 +1594,9 @@
NOT-FOR-US: IBM Records Manager
CVE-2010-3316
RESERVED
- - pam <unfixed> (bug #599832)
+ - pam <unfixed> (unimportant; bug #599832)
NOTE: partial fix
http://git.altlinux.org/people/ldv/packages/?p=pam.git;a=commitdiff;h=06f882f30092a39a1db867c9744b2ca8d60e4ad6
- NOTE: see 20100927201729.GB4485 at openwall.com
+ NOTE: Not exploitable with current kernels
CVE-2010-3315 (authz.c in the mod_dav_svn module for the Apache HTTP Server, as
...)
{DSA-2118-1}
- subversion 1.6.12dfsg-2 (low)
@@ -7111,7 +7111,7 @@
CVE-2010-1323
RESERVED
CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key
Distribution ...)
- - krb5 <unfixed> (bug #599237)
+ - krb5 1.8.3+dfsg-2 (bug #599237)
[lenny] - krb5 <not-affected> (Only affects 1.8)
[etch] - krb5 <not-affected> (Only affects 1.8)
NOTE: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-006.txt