[Secure-testing-commits] r12657 - data/CVE
Giuseppe Iuculano
derevko-guest at alioth.debian.org
Sat Aug 22 09:01:02 UTC 2009
Author: derevko-guest
Date: 2009-08-22 09:01:00 +0000 (Sat, 22 Aug 2009)
New Revision: 12657
Modified:
data/CVE/list
Log:
CVE-2009-1885 fixed in xerces-c 3.0.1-2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-08-21 20:17:36 UTC (rev 12656)
+++ data/CVE/list 2009-08-22 09:01:00 UTC (rev 12657)
@@ -2912,7 +2912,7 @@
[etch] - samba <not-affected> (Vulnerable code not present)
NOTE: Only the 3.2.x branch was affected, so marking 3.3 as affected
CVE-2009-1885 (Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in ...)
- - xerces-c <unfixed> (low; bug #540297)
+ - xerces-c 3.0.1-2 (low; bug #540297)
- xerces-c2 <unfixed> (low; bug #541986)
- xerces27 <removed>
CVE-2009-1884 (Off-by-one error in the bzinflate function in Bzip2.xs in the ...)
More information about the Secure-testing-commits
mailing list