Author: jmm Date: 2012-01-17 21:29:00 +0000 (Tue, 17 Jan 2012) New Revision: 18195 Modified: data/CVE/list Log: wicd non-issue network-manager-gnome not-affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-01-17 21:28:04 UTC (rev 18194) +++ data/CVE/list 2012-01-17 21:29:00 UTC (rev 18195) @@ -25,7 +25,8 @@ CVE-2011-XXXX [apr dos] - apr <unfixed> (low; bug #655435) CVE-2011-XXXX [wicd cleartext passwords] - - wicd <unfixed> (low; bug #652417) + - wicd <unfixed> (unimportant; bug #652417) + NOTE: Not a security issue per se, logfile only accessible by root:adm CVE-2012-0697 (HP StorageWorks P2000 G3 MSA array systems have a default account, ...) NOT-FOR-US: HP StorageWorks CVE-2012-0696 (Multiple cross-site scripting (XSS) vulnerabilities in the Executive ...) @@ -6368,8 +6369,7 @@ NOTE: http://www.kde.org/info/security/advisory-20111003-1.txt TODO: File bugs CVE-2011-3364 (Incomplete blacklist vulnerability in the svEscape function in ...) - - network-manager-gnome <undetermined> - NOTE: actually the ifcfg-rh plugin is affected. Do we include that? + - network-manager-gnome <not-affected> (ifcfg-rh plugin not built/included in Debian) CVE-2011-3363 RESERVED - linux-2.6 2.6.39-1