[Secure-testing-commits] r13476 - in data: . CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Mon Dec 7 03:53:46 UTC 2009
Author: gilbert-guest
Date: 2009-12-07 03:53:45 +0000 (Mon, 07 Dec 2009)
New Revision: 13476
Modified:
data/CVE/list
data/embedded-code-copies
Log:
classpath issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-12-07 03:28:13 UTC (rev 13475)
+++ data/CVE/list 2009-12-07 03:53:45 UTC (rev 13476)
@@ -14146,7 +14146,7 @@
NOT-FOR-US: Sun Solaris
CVE-2008-5659 (The gnu.java.security.util.PRNG class in GNU Classpath 0.97.2 and ...)
- classpath 2:0.98-1 (bug #512532; medium)
- TODO: check for code reproduction in other packages
+ - libgnucrypto-java <unfixed> (medium; bug #559789)
CVE-2008-5657 (CRLF injection vulnerability in Quassel Core before 0.3.0.3 allows ...)
- quassel 0.2~rc1-1.1 (bug #506550)
CVE-2008-5656 (Cross-site scripting (XSS) vulnerability in the frontend plugin for ...)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2009-12-07 03:28:13 UTC (rev 13475)
+++ data/embedded-code-copies 2009-12-07 03:53:45 UTC (rev 13476)
@@ -1510,3 +1510,6 @@
php5
- php4 <removed> (old-version)
+
+classpath
+ - libgnucrypto-java <unfixed> (embed; bug #559788)
More information about the Secure-testing-commits
mailing list