[Secure-testing-commits] r12575 - data/CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Wed Aug 12 14:18:40 UTC 2009


Author: derevko-guest
Date: 2009-08-12 14:18:39 +0000 (Wed, 12 Aug 2009)
New Revision: 12575

Modified:
   data/CVE/list
Log:
CVE-2009-2409, CVE-2009-0669, and CVE-2009-0668 fixed in openssl 0.9.8k-4, zope2.11 2.11.4-1 and zope2.10 2.10.9-1

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-12 12:20:05 UTC (rev 12574)
+++ data/CVE/list	2009-08-12 14:18:39 UTC (rev 12575)
@@ -1092,7 +1092,7 @@
 	NOT-FOR-US: sssd
 CVE-2009-2409 (The Network Security Services (NSS) library before 3.12.3, as used in ...)
 	- nss 3.12.3-1 (low; bug #539895)
-	- openssl <unfixed> (low; bug #539899)
+	- openssl 0.9.8k-4 (low; bug #539899)
 	- gnutls26 2.4.2-5 (low; bug #539901)
 	TODO: check - gnutls13 <removed>
 CVE-2009-2407 (Heap-based buffer overflow in the parse_tag_3_packet function in ...)
@@ -6725,13 +6725,13 @@
 	RESERVED
 CVE-2009-0669 (Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise ...)
 	- zope3 <unfixed> (bug #540462)
-	- zope2.11 <unfixed> (bug #540463)
-	- zope2.10 <unfixed> (bug #540464)
+	- zope2.11 2.11.4-1 (bug #540463)
+	- zope2.10 2.10.9-1 (bug #540464)
 	- zodb <unfixed> (bug #540465)
 CVE-2009-0668 (Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, ...)
 	- zope3 <unfixed> (medium; bug #540462)
-	- zope2.11 <unfixed> (medium; bug #540463)
-	- zope2.10 <unfixed> (medium; bug #540464)
+	- zope2.11 2.11.4-1 (medium; bug #540463)
+	- zope2.10 2.10.9-1 (medium; bug #540464)
 	- zodb <unfixed> (medium; bug #540465)
 CVE-2009-0667 (Untrusted search path vulnerability in Agent/Backend.pm in ...)
 	{DSA-1828-1}




More information about the Secure-testing-commits mailing list