[Git][security-tracker-team/security-tracker][master] Update two CVEs for sredird and drop temporary entry

Sat, 01 Jun 2024 11:58:02 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f640939d by Salvatore Bonaccorso at 2024-06-01T20:57:14+02:00
Update two CVEs for sredird and drop temporary entry

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -720583,8 +720583,6 @@ CVE-2005-XXXX [hdup inproperly preserves permissions 
on directories]
        [sarge] - hdup <no-dsa> (Mostly a design limitation, very limited 
security implications)
 CVE-2001-XXXX [crypt++ passes passwords through the command line]
        - crypt++el 2.91-2.1 (bug #105562; low)
-CVE-2004-XXXX [Two vulnerabilities in sredird]
-       - sredird 2.2.1-1.1 (bug #267098)
 CVE-2003-XXXX [fuzz: Insecure temp file usage]
        - fuzz 0.6-7.1 (bug #183047)
 CVE-2005-XXXX [DoS triggering endless loops in findutils -follow option]
@@ -722158,9 +722156,9 @@ CVE-2005-2555 (Linux kernel 2.6.x does not properly 
restrict socket policy acces
 CVE-2004-2388 (rexecd for AIX 4.3.3 does not properly use a local copy of the 
pwd str ...)
        NOT-FOR-US: rexecd
 CVE-2004-2387 (Buffer overflow in the HandleCPCCommand function of sercd 
before 2.3.1 ...)
-       - sredird <unfixed>
+       - sredird 2.2.1-1.1 (bug #267098)
 CVE-2004-2386 (Format string vulnerability in the LogMsg function in sercd 
before 2.3 ...)
-       - sredird <unfixed> (bug #1072340)
+       - sredird 2.2.1-1.1 (bug #267098; bug #1072340)
 CVE-2004-2385 (EMU Webmail 5.2.7 allows remote attackers to obtain sensitive 
path inf ...)
        NOT-FOR-US: EMU Webmail
 CVE-2004-2384 (NullSoft Winamp 5.02 allows remote attackers to cause a denial 
of serv ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f640939da7a020d00cfb7bbebf5ae920af67da3a

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f640939da7a020d00cfb7bbebf5ae920af67da3a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to