[Secure-testing-commits] r12689 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Aug 26 19:18:21 UTC 2009


Author: jmm-guest
Date: 2009-08-26 19:18:21 +0000 (Wed, 26 Aug 2009)
New Revision: 12689

Modified:
   data/CVE/list
Log:
perl no-dsa, maintainer wants to prepare update


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-26 19:03:06 UTC (rev 12688)
+++ data/CVE/list	2009-08-26 19:18:21 UTC (rev 12689)
@@ -4611,8 +4611,10 @@
 	- icedove 2.0.0.22-1 (bug #535124)
 	TODO: determine whether icedove truely affected or whether issue solely within xulrunner
 CVE-2009-1391 (Off-by-one error in the inflate function in Zlib.xs in ...)
-	- perl 5.10.0-23 (medium; bug #532736)
-	- libcompress-raw-zlib-perl 2.015-2 (medium; bug #532738)
+	- perl 5.10.0-23 (low; bug #532736)
+	[lenny] - perl <no-dsa> (Minor issue)
+	[etch] - perl <not-affected> (Doesn't yet include Compress-Raw-Zlib)
+	- libcompress-raw-zlib-perl 2.015-2 (low; bug #532738)
 CVE-2009-1390 (Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) ...)
 	- mutt 1.5.20-1
 	[lenny] - mutt <not-affected> (Affected code was introduced in 1.5.19)




More information about the Secure-testing-commits mailing list