[Secure-testing-commits] r12659 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Sat Aug 22 10:36:16 UTC 2009
Author: jmm-guest
Date: 2009-08-22 10:36:16 +0000 (Sat, 22 Aug 2009)
New Revision: 12659
Modified:
data/CVE/list
data/embedded-code-copies
Log:
avifile code copy
ruby fixed
xerces fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-08-22 09:53:18 UTC (rev 12658)
+++ data/CVE/list 2009-08-22 10:36:16 UTC (rev 12659)
@@ -630,7 +630,7 @@
- apache2 <unfixed> (low; bug #539246)
[lenny] - apache2 <no-dsa> (Standard behaviour of crypt)
[etch] - apache2 <no-dsa> (Standard behaviour of crypt)
-CVE-2009-XXXX [gnudips: remote priviledge escalation]
+CVE-2009-XXXX [gnudips: remote privilege escalation]
- gnudip <unfixed> (medium; bug #539452)
TODO: request CVE id
CVE-2009-XXXX [xscreensaver: local screen lock bypassable via low resolution video devices]
@@ -7525,7 +7525,7 @@
NOT-FOR-US: Simple PHP News
CVE-2009-0642 (ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check ...)
{DSA-1860-1}
- - ruby1.9 1.9.0.2-9.1 (bug #513528)
+ - ruby1.9 1.9.0.5-1 (bug #513528)
- ruby1.8 1.8.7.72-3.1 (medium; bug #517639; bug #522939)
CVE-2009-0641 (sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions ...)
NOT-FOR-US: FreeBSD telnetd (apparently there's some common code base in netkit-telnet, but it's not affected
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2009-08-22 09:53:18 UTC (rev 12658)
+++ data/embedded-code-copies 2009-08-22 10:36:16 UTC (rev 12659)
@@ -265,7 +265,9 @@
- motion 3.1.19-1
- gstreamer0.10-ffmpeg 0.10.3-2
- xmovie <unfixed>
+ NOTE: xmovie removed, only present in Etch
TODO: gimp-gap (potentially using ffmpeg code as well)
+ - avifile <unfixed> (embed; bug #538750)
faad2
- mplayer 1.0~rc2-20 (embed)
More information about the Secure-testing-commits
mailing list