[Secure-testing-commits] r12549 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Mon Aug 10 09:14:15 UTC 2009
Author: joeyh
Date: 2009-08-10 09:14:15 +0000 (Mon, 10 Aug 2009)
New Revision: 12549
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-08-10 03:52:48 UTC (rev 12548)
+++ data/CVE/list 2009-08-10 09:14:15 UTC (rev 12549)
@@ -240,6 +240,7 @@
CVE-2009-2661 (The asn1_length function in strongSwan 2.8 before 2.8.11, 4.2 before ...)
- strongswan <unfixed> (bug #540144)
CVE-2009-2660 (Multiple integer overflows in CamlImages 2.2 might allow ...)
+ {DSA-1857-1}
- camlimages 1:3.0.1-3 (medium; bug #540146)
CVE-2009-2657 (nilfs-utils before 2.0.14 installs multiple programs with unnecessary ...)
- nilfs2-tools <not-affected> (dh_fixperms removes the setuid and setgid bits from all files)
@@ -447,10 +448,10 @@
CVE-2008-6877 (** DISPUTED ** ...)
NOT-FOR-US: Zen Cart
CVE-2009-2622 (Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote ...)
- {DSA-1843-1}
+ {DSA-1843-2 DSA-1843-1}
- squid3 3.0.STABLE18-1 (medium; bug #538989)
CVE-2009-2621 (Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 does not ...)
- {DSA-1843-1}
+ {DSA-1843-2 DSA-1843-1}
- squid3 3.0.STABLE18-1 (medium; bug #538989)
CVE-2009-2595 (Cross-site scripting (XSS) vulnerability in productSearch.html in ...)
NOT-FOR-US: Censura
@@ -1216,7 +1217,7 @@
NOT-FOR-US: XMB
CVE-2007-6727 (SQL injection vulnerability in topic.php in KerviNet Forum 1.1 allows ...)
NOT-FOR-US: KerviNet Forum
-CVE-2009-2687 [php: segfaults on corrupted jpeg files]
+CVE-2009-2687 (The exif_read_data function in the Exif module in PHP before 5.2.10 ...)
- php5 5.2.10.dfsg.1-2 (low; bug #535888)
- php4 <unfixed> (low; bug #535897)
NOTE: 5.3.0 (in experimental) is not affected
More information about the Secure-testing-commits
mailing list