jmm-guest at alioth.debian.org
2008-Nov-06 21:52 UTC
[Secure-testing-commits] r10314 - data/CVE
Author: jmm-guest
Date: 2008-11-06 21:52:36 +0000 (Thu, 06 Nov 2008)
New Revision: 10314
Modified:
data/CVE/list
Log:
fix source package names
(http://idssi.enyo.de/tracker/data/unknown-packages can
be used to triage such errors)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-11-06 21:49:39 UTC (rev 10313)
+++ data/CVE/list 2008-11-06 21:52:36 UTC (rev 10314)
@@ -1351,7 +1351,7 @@
- scilab 4.1.2-6 (low; bug #496414)
[etch] - scilab <no-dsa> (Non-free not supported)
CVE-2008-4395 (Multiple buffer overflows in the ndiswrapper module 1.53 for the
Linux ...)
- - ndiswrapper-source 1.53-2 (medium; bug #504696)
+ - ndiswrapper 1.53-2 (medium; bug #504696)
CVE-2008-4394 (Multiple untrusted search path vulnerabilities in Portage before
...)
NOT-FOR-US: Gentoo package manager Portage
CVE-2008-4393 (Cross-site scripting (XSS) vulnerability in VeriSign Kontiki
Delivery ...)
@@ -1798,7 +1798,7 @@
CVE-2008-4193 (Stack-based buffer overflow in SecurityGateway.dll in Alt-N ...)
NOT-FOR-US: Alt-N Technologies SecurityGateway
CVE-2008-4192 (The pserver_shutdown function in fence_egenera in cman
2.20080629 ...)
- - cman <unfixed> (bug #496410; low)
+ - redhat-cluster <unfixed> (bug #496410; low)
CVE-2008-4191 (extract-table.pl in Emacspeak 26 and 28 allows local users to
...)
- emacspeak 28.0-2 (bug #496431; low)
[etch] - emacspeak <no-dsa> (Minor issue)
@@ -37975,7 +37975,7 @@
- capi4hylafax 1:01.03.00.99.svn.300-3
CVE-2006-3125 (Array index error in tetrinet.c in gtetrinet 0.7.8 and earlier
allows ...)
{DSA-1163}
- - getrinet 0.7.10-1
+ - gtetrinet 0.7.10-1
CVE-2006-3124 (Buffer overflow in the HTTP header parsing in Streamripper
before ...)
{DSA-1158}
- streamripper 1.61.25-2
Nico Golde
2008-Nov-06 22:23 UTC
[Secure-testing-team] [Secure-testing-commits] r10314 - data/CVE
Hi, * jmm-guest at alioth.debian.org <jmm-guest at alioth.debian.org> [2008-11-06 22:59]:> Author: jmm-guest > Date: 2008-11-06 21:52:36 +0000 (Thu, 06 Nov 2008) > New Revision: 10314 > > Modified: > data/CVE/list > Log: > fix source package names > (http://idssi.enyo.de/tracker/data/unknown-packages can be used to triage such errors)There seems to be a bug in this site. For gforge-plugins-extra it links CVE-2008-2836 to the issue which is about webcalender. Any idea? Cheers Nico -- Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20081106/2f26c972/attachment.pgp
Nico Golde
2008-Nov-06 22:27 UTC
[Secure-testing-team] [Secure-testing-commits] r10314 - data/CVE
Hi, * Nico Golde <debian-secure-testing+ml at ngolde.de> [2008-11-06 23:25]:> * jmm-guest at alioth.debian.org <jmm-guest at alioth.debian.org> [2008-11-06 22:59]:[...]> > fix source package names > > (http://idssi.enyo.de/tracker/data/unknown-packages can be used to triage such errors) > > There seems to be a bug in this site. > For gforge-plugins-extra it links CVE-2008-2836 to the issue > which is about webcalender. > Any idea?Forget this, wrote that right before I saw atomo64s commit. Cheers Nico -- Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20081106/7f6b9e83/attachment.pgp