Author: joeyh Date: 2010-12-13 09:14:42 +0000 (Mon, 13 Dec 2010) New Revision: 15693 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-12-13 00:44:15 UTC (rev 15692) +++ data/CVE/list 2010-12-13 09:14:42 UTC (rev 15693) @@ -519,8 +519,8 @@ CVE-2008-7267 (SQL injection vulnerability in announcements.php in SiteEngine 5.x ...) NOT-FOR-US: SiteEngine CVE-2010-XXXX [echoping buffer overflows] - - echoping <unfixed> (low; bug #606808) - NOTE: not sure if any of these are real security concerns + - echoping <unfixed> (low; bug #606808) + NOTE: not sure if any of these are real security concerns CVE-2010-XXXX [elfsign uses cryptographically weak md5 hashes] - elfsign <unfixed> (low; bug #555668) [lenny] - elfsign <no-dsa> (a stronger hashing algorithm would completely change functionality of the package) @@ -8666,8 +8666,8 @@ CVE-2010-1379 (Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly ...) NOT-FOR-US: Apple Mac OS X CVE-2010-1378 (OpenSSL in Apple Mac OS X 10.6.x before 10.6.5 does not properly ...) - - openssl <not-affected> (fix for an apple-specific flaw) - NOTE: sounds like a duplicate of CVE-2009-2409 + - openssl <not-affected> (fix for an apple-specific flaw) + NOTE: sounds like a duplicate of CVE-2009-2409 CVE-2010-1377 (Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an ...) NOT-FOR-US: Apple Mac OS X CVE-2010-1376 (Multiple format string vulnerabilities in Network Authorization in ...)