Author: keescook-guest
Date: 2007-08-16 00:19:22 +0000 (Thu, 16 Aug 2007)
New Revision: 6331
Modified:
data/CVE/list
Log:
not-affected: samba, etch/sarge added for libvorbis
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-08-15 22:36:38 UTC (rev 6330)
+++ data/CVE/list 2007-08-16 00:19:22 UTC (rev 6331)
@@ -649,6 +649,7 @@
CVE-2007-4045 (The CUPS service on SUSE Linux before 20070720 allows remote
attackers ...)
- cupsys <not-affected> (SuSE-specific regression)
CVE-2007-4044 (Incomplete blacklist vulnerability in the MS-RPC functionality
in smbd ...)
+ - samba <not-affected> (SuSE-specific regression)
NOTE: I've contacted SuSE: It's a functional regression in SuSE, not a
security problem
CVE-2007-4043 (file.cgi in Secure Computing SecurityReporter (aka Network
Security ...)
NOT-FOR-US: Secure Computing SecurityReporter
@@ -2832,6 +2833,8 @@
NOTE: Not reproducibly reliably by an attacker, mostly a bug
CVE-2007-3106 (libvorbis 1.1.2, and possibly other versions before 1.2.0,
allows ...)
- libvorbis 1.2.0.dfsg-1 (medium)
+ [etch] - libvorbis <unfixed> (bug #437916; medium)
+ [sarge] - libvorbis <unfixed> (bug #437916; medium)
CVE-2007-3105 (Stack-based buffer overflow in the random number generator
(RNG) ...)
- linux-2.6 <unfixed>
CVE-2007-3104 (The sysfs_readdir function in the Linux kernel in Red Hat
Enterprise ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
