Author: jmm
Date: 2011-01-16 01:55:07 +0000 (Sun, 16 Jan 2011)
New Revision: 15893
Modified:
data/CVE/list
Log:
encfs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-01-16 01:44:23 UTC (rev 15892)
+++ data/CVE/list 2011-01-16 01:55:07 UTC (rev 15893)
@@ -1228,8 +1228,7 @@
NOT-FOR-US: Microsoft Data Access Components
CVE-2010-XXXX [ircd-ratbox password disclosure?]
- ircd-ratbox 3.0.6.dfsg-2
- TODO: check
- NOTE: 20101210234921.206660uv6p8pku41 at webdesk.duckcorp.org
+ NOTE: Poked maintainer
CVE-2010-XXXX [wordpress: insufficient permissions verification on XMLRPC
interface]
- wordpress 3.0.3-1 (bug #606657)
[lenny] - wordpress <not-affected> (vulnerable code not present)
@@ -5249,10 +5248,13 @@
NOTE: http://packetstormsecurity.org/1009-exploits/smbind-sql.txt
CVE-2010-3075 (EncFS before 1.7.0 encrypts multiple blocks by means of the CFB
cipher ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Not backportable, breaks
backwards-compatibility)
CVE-2010-3074 (SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper
combination of ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Minor issue)
CVE-2010-3073 (SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle
integer ...)
- encfs 1.7.2-1 (bug #595998)
+ [lenny] - encfs <no-dsa> (Minor issue)
CVE-2010-3072 (The string-comparison functions in String.cci in Squid 3.x
before ...)
{DSA-2111-1}
- squid3 3.1.6-1.1 (bug #596086; low)