[Secure-testing-commits] r11720 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Sun Apr 26 17:15:22 UTC 2009 

Author: jmm-guest
Date: 2009-04-26 17:15:22 +0000 (Sun, 26 Apr 2009)
New Revision: 11720

Modified:
   data/CVE/list
Log:
- new kernel issue
- kernel updates


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-04-26 15:36:35 UTC (rev 11719)
+++ data/CVE/list	2009-04-26 17:15:22 UTC (rev 11720)
@@ -65,7 +65,10 @@
 CVE-2009-1363
 	RESERVED
 CVE-2009-1360 (The __inet6_check_established function in net/ipv6/inet6_hashtables.c ...)
-	TODO: check
+	RESERVED
+	- linux-2.6 2.6.29-1
+	[etch] - linux-2.6 <not-affected> (Introduced in 2.6.27)
+	- linux-2.6.24 <not-affected> (Introduced in 2.6.27)
 CVE-2009-1411
 	NOT-FOR-US: Seditio CMS
 CVE-2009-1410
@@ -486,7 +489,7 @@
 CVE-2009-1267 (Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 ...)
 	- wireshark <not-affected> (Only affects Wireshark on Windows)
 CVE-2009-1266 (Unspecified vulnerability in Wireshark before 1.0.7-0.1-1 has unknown ...)
-	NOTE: is likely getting rejected, duplicate
+	NOTE: Dupe of CVE-2009-1210
 CVE-2009-1265 (Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux ...)
 	- linux-2.6 <unfixed>
 	- linux-2.6.24 <unfixed>
@@ -2716,8 +2719,7 @@
 CVE-2009-0675 (The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux ...)
 	{DSA-1749-1}
 	- linux-2.6 2.6.29-1 (low)
-	- linux-2.6.24 <unfixed> (low)
-	NOTE: Didn't check 2.6.24 so far, only temporary for now
+	- linux-2.6.24 <removed> (low)
 CVE-2009-0674 (images/captcha.php in Raven Web Services RavenNuke 2.30, when ...)
 	NOT-FOR-US: RavenNuke
 CVE-2009-0673 (Eval injection vulnerability in the Custom Fields feature in the Your ...)
@@ -5759,7 +5761,7 @@
 	- linux-2.6.24 <removed>
 CVE-2009-0028 (The clone system call in the Linux kernel 2.6.28 and earlier allows ...)
 	- linux-2.6 2.6.29-1
-	- linux-2.6.24 <unfixed>
+	- linux-2.6.24 <removed>
 CVE-2009-0027 (The request handler in JBossWS in JBoss Enterprise Application ...)
 	- jbossas4 <unfixed>
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)

More information about the Secure-testing-commits mailing list