[Secure-testing-commits] r12549 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Aug 10 09:14:15 UTC 2009


Author: joeyh
Date: 2009-08-10 09:14:15 +0000 (Mon, 10 Aug 2009)
New Revision: 12549

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-10 03:52:48 UTC (rev 12548)
+++ data/CVE/list	2009-08-10 09:14:15 UTC (rev 12549)
@@ -240,6 +240,7 @@
 CVE-2009-2661 (The asn1_length function in strongSwan 2.8 before 2.8.11, 4.2 before ...)
 	- strongswan <unfixed> (bug #540144)
 CVE-2009-2660 (Multiple integer overflows in CamlImages 2.2 might allow ...)
+	{DSA-1857-1}
 	- camlimages 1:3.0.1-3 (medium; bug #540146)
 CVE-2009-2657 (nilfs-utils before 2.0.14 installs multiple programs with unnecessary ...)
 	- nilfs2-tools <not-affected> (dh_fixperms removes the setuid and setgid bits from all files)
@@ -447,10 +448,10 @@
 CVE-2008-6877 (** DISPUTED ** ...)
 	NOT-FOR-US: Zen Cart
 CVE-2009-2622 (Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote ...)
-	{DSA-1843-1}
+	{DSA-1843-2 DSA-1843-1}
 	- squid3 3.0.STABLE18-1 (medium; bug #538989)
 CVE-2009-2621 (Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 does not ...)
-	{DSA-1843-1}
+	{DSA-1843-2 DSA-1843-1}
 	- squid3 3.0.STABLE18-1 (medium; bug #538989)
 CVE-2009-2595 (Cross-site scripting (XSS) vulnerability in productSearch.html in ...)
 	NOT-FOR-US: Censura
@@ -1216,7 +1217,7 @@
 	NOT-FOR-US: XMB
 CVE-2007-6727 (SQL injection vulnerability in topic.php in KerviNet Forum 1.1 allows ...)
 	NOT-FOR-US: KerviNet Forum
-CVE-2009-2687 [php: segfaults on corrupted jpeg files]
+CVE-2009-2687 (The exif_read_data function in the Exif module in PHP before 5.2.10 ...)
 	- php5 5.2.10.dfsg.1-2 (low; bug #535888)
 	- php4 <unfixed> (low; bug #535897)
 	NOTE: 5.3.0 (in experimental) is not affected




More information about the Secure-testing-commits mailing list