On Sun, 8 Aug 2010 23:40:38 -0400, Anibal Monsalve Salazar wrote: > On Tue, Aug 03, 2010 at 01:47:15PM -0400, Michael Gilbert wrote: > >package: ssmtp > >version: 2.64-4 > >severity: serious > >tags: security > > > >a buffer overflow in ssmtp: > >https://bugs.launchpad.net/ubuntu/+source/ssmtp/+bug/282424 > > > >note that current code is slightly different than ubuntu, so its not > >entirely clear whether debian is affected. please check. > > > >thanks, > >mike > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7258 > > CVE-2008-7258 at the address above seems empty. > > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-7258 > > The web page above reads: > > ERROR, "CVE-2008-7258" is valid CVE format, but CVE was not found.
that means that the info hasn't yet been populated in their database. it was assigned on oss-security, and sometimes it takes a many days to enter the database after that. mike -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
