Author: jmm-guest
Date: 2010-12-20 07:25:58 +0000 (Mon, 20 Dec 2010)
New Revision: 15718
Modified:
data/CVE/list
Log:
nordugrid-arc-nox fixed
amend openssl entry now that openssl 1.0.0c was uploaded to experimental
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-12-18 23:22:58 UTC (rev 15717)
+++ data/CVE/list 2010-12-20 07:25:58 UTC (rev 15718)
@@ -3197,8 +3197,7 @@
RESERVED
- paxtest 1:0.9.9-1 (unimportant; bug #598413)
CVE-2010-3372 (Untrusted search path vulnerability in NorduGrid Advanced
Resource ...)
- - nordugrid-arc-nox <unfixed> (bug #606151)
- NOTE: already fixed upstream; maintainer was aware already
+ - nordugrid-arc-nox 1.1.0~rc6-2.1 (bug #606151)
CVE-2010-3371
RESERVED
CVE-2010-3370
@@ -7858,8 +7857,7 @@
- python2.4 <removed> (low)
[lenny] - python2.4 <no-dsa> (Minor issue)
CVE-2010-1633 (RSA verification recovery in the EVP_PKEY_verify_recover
function in ...)
- - openssl <not-affected> (This bug is only present in OpenSSL 1.0.0)
- TODO: recheck once >= 1.0.0 gets uploaded
+ - openssl <not-affected> (This bug is only present in OpenSSL 1.0.0,
first version of 1.0.0 ever uploaded was 1.0.0c)
CVE-2010-1632 (Apache Axis2 before 1.5.2, as used in IBM WebSphere Application
Server ...)
- axis2c 1.6.0-1
CVE-2010-1631
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
