Author: nion
Date: 2009-04-02 11:51:22 +0000 (Thu, 02 Apr 2009)
New Revision: 11538
Modified:
data/CVE/list
Log:
CVE-2009-1215 etch not-affected
CVE-2009-1045 non-issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-02 11:48:52 UTC (rev 11537)
+++ data/CVE/list 2009-04-02 11:51:22 UTC (rev 11538)
@@ -1,5 +1,8 @@
CVE-2009-1215 (Race condition in GNU screen 4.0.3 allows local users to create
or ...)
- screen <unfixed> (bug #521123)
+ [etch] - screen <not-affected> (etch version predates #433338)
+ [lenny] - screen <no-dsa> (Minor issue)
+ TODO: add after r1 4.0.3-11+lenny1
CVE-2009-1214 (GNU screen 4.0.3 creates the /tmp/screen-exchange temporary
file with ...)
- screen <unfixed> (unimportant; bug #521123)
NOTE: documented behaviour "or the public accessible screen-exchange",
see man screen
@@ -522,7 +525,8 @@
CVE-2009-1046 (The console selection feature in the Linux kernel 2.6.28 before
...)
- linux.2.6 2.6.29-1
CVE-2009-1045 (requests/status.xml in VLC 0.9.8a allows remote attackers to
cause a ...)
- - vlc <unfixed> (low; bug #522170)
+ - vlc <unfixed> (unimportant; bug #522170)
+ NOTE: access is limited to localhost
CVE-2009-1044 (Mozilla Firefox 3.0.7 on Windows 7 allows remote attackers to
execute ...)
{DSA-1756-1}
- xulrunner 1.9.0.8-1
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
