Author: fw Date: 2012-02-16 19:28:02 +0000 (Thu, 16 Feb 2012) New Revision: 18461 Modified: data/CVE/list Log: CVE-2011-0996: more accurate description Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-02-16 19:15:48 UTC (rev 18460) +++ data/CVE/list 2012-02-16 19:28:02 UTC (rev 18461) @@ -14670,7 +14670,7 @@ NOTE: http://thread.gmane.org/gmane.comp.security.oss.general/4820 NOTE: inrodroduced in 4.2.0 and fixed in 4.2.1 CVE-2011-0996 (dhcpcd before 5.2.12 allows remote attackers to execute arbitrary ...) - - dhcpcd <unfixed> (unimportant) + - dhcpcd <not-affected> (old shell quoting code is not vulnerable) NOTE: Debian''s dhcpcd.sh is not vulnerable. CVE-2011-0995 (The sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 ...) TODO: check