[Secure-testing-commits] r11609 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sat Apr 11 21:14:14 UTC 2009
Author: joeyh
Date: 2009-04-11 21:14:14 +0000 (Sat, 11 Apr 2009)
New Revision: 11609
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-11 21:08:37 UTC (rev 11608)
+++ data/CVE/list 2009-04-11 21:14:14 UTC (rev 11609)
@@ -132,8 +132,10 @@
CVE-2009-1252
RESERVED
CVE-2009-1251 (Heap-based buffer overflow in the cache manager in the client in ...)
+ {DSA-1768-1}
- openafs 1.4.10+dfsg1-1
CVE-2009-1250 (The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 ...)
+ {DSA-1768-1}
- openafs 1.4.10+dfsg1-1
CVE-2009-1249 (Cross-site scripting (XSS) vulnerability in Feed element mapper 5.x ...)
NOT-FOR-US: Feed element mapper for Drupal
@@ -777,6 +779,7 @@
[etch] - sun-java5 <no-dsa> (Non-free not supported)
[lenny] - sun-java5 <no-dsa> (Non-free not supported)
CVE-2009-1101 (Unspecified vulnerability in the lightweight HTTP server ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
- sun-java5 1.5.0-18-1
@@ -789,30 +792,36 @@
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
CVE-2009-1098 (Buffer overflow in Java SE Development Kit (JDK) and Java Runtime ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
CVE-2009-1097 (Multiple buffer overflows in Java SE Development Kit (JDK) and Java ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
CVE-2009-1096 (Buffer overflow in unpack200 in Java SE Development Kit (JDK) and Java ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
- sun-java5 1.5.0-18-1
[etch] - sun-java5 <no-dsa> (Non-free not supported)
[lenny] - sun-java5 <no-dsa> (Non-free not supported)
CVE-2009-1095 (Integer overflow in unpack200 in Java SE Development Kit (JDK) and ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
- sun-java5 1.5.0-18-1
[etch] - sun-java5 <no-dsa> (Non-free not supported)
[lenny] - sun-java5 <no-dsa> (Non-free not supported)
CVE-2009-1094 (Unspecified vulnerability in the LDAP implementation in Java SE ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
- sun-java5 1.5.0-18-1
[etch] - sun-java5 <no-dsa> (Non-free not supported)
[lenny] - sun-java5 <no-dsa> (Non-free not supported)
CVE-2009-1093 (LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java ...)
+ {DSA-1769-1}
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
CVE-2009-XXXX [unspecified xfig temp issue]
@@ -1718,6 +1727,7 @@
CVE-2009-0794
RESERVED
CVE-2009-0793 (cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK ...)
+ {DSA-1769-1}
TODO: check
CVE-2009-0792 [integer overflows in argyll]
RESERVED
@@ -2119,7 +2129,7 @@
CVE-2009-0734 (Heap-based buffer overflow in MultimediaPlayer.exe 6.86.240.7 in Nokia ...)
NOT-FOR-US: MultimediaPlayer.exe
CVE-2009-0733 (Multiple stack-based buffer overflows in the ReadSetOfCurves function ...)
- {DSA-1745-1}
+ {DSA-1769-1 DSA-1745-1}
- lcms 1.18.dfsg-1 (bug #522446)
CVE-2009-0732 (Downloadcenter 2.1 stores common.h under the web root with ...)
NOT-FOR-US: Downloadcenter
@@ -2140,7 +2150,7 @@
CVE-2009-0724
RESERVED
CVE-2009-0723 (Multiple integer overflows in LittleCMS (aka lcms or liblcms) before ...)
- {DSA-1745-1}
+ {DSA-1769-1 DSA-1745-1}
- lcms 1.18.dfsg-1 (bug #522446)
CVE-2009-0722 (Directory traversal vulnerability in admin.php in Potato News 1.0.0 ...)
NOT-FOR-US: Potato News
@@ -2777,7 +2787,7 @@
CVE-2009-0582 (The ntlm_challenge function in the NTLM SASL authentication mechanism ...)
TODO: check
CVE-2009-0581 (Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as ...)
- {DSA-1745-1}
+ {DSA-1769-1 DSA-1745-1}
- lcms 1.18.dfsg-1 (bug #522446)
CVE-2009-0580
RESERVED
@@ -46651,6 +46661,7 @@
CVE-2006-2427 (freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h ...)
- clamav <not-affected> (clamav-freshclam doesn't ship freshclam setuid or setgid)
CVE-2006-2426 (Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 ...)
+ {DSA-1769-1}
- sun-java5 1.5.0-10-1 (bug #384734)
- sun-java6 6-13-1
[lenny] - sun-java6 <no-dsa> (Non-free not supported)
More information about the Secure-testing-commits
mailing list