Author: white Date: 2008-05-20 13:05:09 +0000 (Tue, 20 May 2008) New Revision: 8850
Modified: data/CVE/list Log: Leave note about libvorbis issue Modified: data/CVE/list =================================================================== --- data/CVE/list 2008-05-20 12:01:42 UTC (rev 8849) +++ data/CVE/list 2008-05-20 13:05:09 UTC (rev 8850) @@ -572,7 +572,9 @@ CVE-2008-2010 (Unspecified vulnerability in Apple QuickTime Player on Windows XP SP2 ...) NOT-FOR-US: Windows CVE-2008-2009 (Xiph.org libvorbis before 1.0 does not properly check for ...) - TODO: check + NOTE: #482039 has information to inform maintainer about new upstream code and problem + NOTE: however, it is not clear that the version is vulnerable + TODO: check vulnerability of debian packages and value of upstream patch CVE-2008-2008 (Buffer overflow in the Display Names message feature in Cerulean ...) NOT-FOR-US: Cerulean Studios Trillian Basic CVE-2008-2007 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits