Author: nion
Date: 2012-04-15 19:10:22 +0000 (Sun, 15 Apr 2012)
New Revision: 18952
Modified:
data/CVE/list
Log:
CVE-2011-5000 is fixed, no-dsa for squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-04-15 19:08:01 UTC (rev 18951)
+++ data/CVE/list 2012-04-15 19:10:22 UTC (rev 18952)
@@ -4853,8 +4853,9 @@
CVE-2011-5001 (Stack-based buffer overflow in the CGenericScheduler::AddTask
function ...)
NOT-FOR-US: Trend Micro Control Manager
CVE-2011-5000 (The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH
5.8 and ...)
- - openssh <unfixed>
- TODO: check
+ - openssh 1:5.9p1-1
+ [squeeze] - openssh <no-dsa> (Minor issue)
+ NOTE: looking at the code an additional integer overflow check was
added in at least 5.9
CVE-2011-4999
RESERVED
CVE-2011-4998
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
