Author: nion Date: 2012-04-15 19:10:22 +0000 (Sun, 15 Apr 2012) New Revision: 18952 Modified: data/CVE/list Log: CVE-2011-5000 is fixed, no-dsa for squeeze Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-04-15 19:08:01 UTC (rev 18951) +++ data/CVE/list 2012-04-15 19:10:22 UTC (rev 18952) @@ -4853,8 +4853,9 @@ CVE-2011-5001 (Stack-based buffer overflow in the CGenericScheduler::AddTask function ...) NOT-FOR-US: Trend Micro Control Manager CVE-2011-5000 (The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and ...) - - openssh <unfixed> - TODO: check + - openssh 1:5.9p1-1 + [squeeze] - openssh <no-dsa> (Minor issue) + NOTE: looking at the code an additional integer overflow check was added in at least 5.9 CVE-2011-4999 RESERVED CVE-2011-4998