diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2012-09-07 15:53:21 +0000 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2012-09-07 15:53:21 +0000 |
| commit | b1a47dffde5d18f0c8dbd060998e193ced5efd54 (patch) | |
| tree | d7752e0c073b43b90d5022d2160e41e8abca2f8d /data/CVE/2002.list | |
| parent | 4275709d74d437c90c7a257ba7b29ecfb09143c7 (diff) | |
remove more webkit <unfixed> entries, no longer supported/tracked
wireshark fixed
rt-authen-externalauth fixed
mark disputed wordpress issues as unimportant
python2.7 hash collision issue already fixed in rc1, i.e. testing
embedded expat only used up to python2.6
plupload issue was fixed in wordpress a while ago
GCC new int overflow no-dsa (fw, please add info if you find anything missing
or disagree)
fix fixed version for horizon
mark okular as fixed, see NOTE for details
an additional, split-off roundcube issue was fixed along with the original ID
fix swftools entry
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@20115 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE/2002.list')
| -rw-r--r-- | data/CVE/2002.list | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/data/CVE/2002.list b/data/CVE/2002.list index 0a28752575..6f309db88c 100644 --- a/data/CVE/2002.list +++ b/data/CVE/2002.list @@ -9,11 +9,18 @@ CVE-2002-2440 CVE-2002-2439 RESERVED - gcc-4.1 <removed> + [squeeze] - gcc-4.1 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis) - gcc-4.3 <removed> + [squeeze] - gcc-4.3 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis) - gcc-4.4 <unfixed> + [squeeze] - gcc-4.4 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis) + [wheezy] - gcc-4.4 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis) - gcc-4.6 <unfixed> + [wheezy] - gcc-4.6 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis) NOTE: Are there apps known to be exploitable through this? NOTE: Any application using unguarded memory allocation would be susceptible to DoS anyway? + NOTE: This should be addressed in jessie by getting this fixed in gcc 4.7, so that the archive is + NOTE: properly rebuild with a fixed version from the start CVE-2002-2438 RESERVED NOT-FOR-US: ancient linux 2.4 issue |