[Secure-testing-commits] r12544 - data/CVE

Sun Aug 9 21:14:14 UTC 2009

Author: joeyh
Date: 2009-08-09 21:14:14 +0000 (Sun, 09 Aug 2009)
New Revision: 12544

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-08-09 20:43:59 UTC (rev 12543)
+++ data/CVE/list	2009-08-09 21:14:14 UTC (rev 12544)
@@ -556,22 +556,22 @@
 	NOT-FOR-US: Adobe
 CVE-2009-2563 (Unspecified vulnerability in the Infiniband dissector in Wireshark ...)
 	- wireshark 1.2.1-1 (bug #538237)
-        [etch] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
-        [lenny] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
+	[etch] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
+	[lenny] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
 CVE-2009-2562 (Unspecified vulnerability in the AFS dissector in Wireshark 0.9.2 ...)
 	- wireshark 1.2.1-1 (low; bug #538237)
 CVE-2009-2561 (Unspecified vulnerability in the sFlow dissector in Wireshark 1.2.0 ...)
 	- wireshark 1.2.1-1 (bug #538237)
-        [etch] - wireshark <not-affected> (Only affects 1.2.0)
-        [lenny] - wireshark <not-affected> (Only affects 1.2.0)
+	[etch] - wireshark <not-affected> (Only affects 1.2.0)
+	[lenny] - wireshark <not-affected> (Only affects 1.2.0)
 CVE-2009-2560 (Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote ...)
 	- wireshark 1.2.1-1 (bug #538237)
-        [etch] - wireshark <not-affected> (Only affects 1.2.0)
-        [lenny] - wireshark <not-affected> (Only affects 1.2.0)
+	[etch] - wireshark <not-affected> (Only affects 1.2.0)
+	[lenny] - wireshark <not-affected> (Only affects 1.2.0)
 CVE-2009-2559 (Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote ...)
 	- wireshark 1.2.1-1 (bug #538237)
-        [etch] - wireshark <not-affected> (Only affects 1.2.0)
-        [lenny] - wireshark <not-affected> (Only affects 1.2.0)
+	[etch] - wireshark <not-affected> (Only affects 1.2.0)
+	[lenny] - wireshark <not-affected> (Only affects 1.2.0)
 CVE-2009-2558 (system/message.php in Admin News Tools 2.5 does not properly restrict ...)
 	NOT-FOR-US: Admin News Tools 
 CVE-2009-2557 (Directory traversal vulnerability in system/download.php in Admin News ...)
@@ -953,7 +953,7 @@
 CVE-2009-XXXX [libio-socket-ssl-perl: partial hostname matching vulnerability]
 	- libio-socket-ssl-perl 1.26-1 (low; bug #535946)
 	[lenny] - libio-socket-ssl-perl <no-dsa> (Scheduled for next point update)
-        TODO: next point release: [lenny] - libio-socket-ssl-perl 1.16-1+lenny1
+	TODO: next point release: [lenny] - libio-socket-ssl-perl 1.16-1+lenny1
 	NOTE: hostname validition is not implemented until 1.14, so etch 
 	NOTE: is in a way is not affected, but in another sense, it is 
 	NOTE: completely affected since no validation done at all
@@ -987,6 +987,7 @@
 	- apr-util 1.3.9+dfsg-1
 CVE-2009-2411 [subversion: insufficient input validation]
 	RESERVED
+	{DSA-1855-1}
 	- subversion 1.6.4dfsg-1
 CVE-2009-2410 (The local_handler_callback function in ...)
 	NOT-FOR-US: sssd


