[Secure-testing-commits] r13508 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Thu Dec 10 21:35:06 UTC 2009 

Author: jmm-guest
Date: 2009-12-10 21:35:06 +0000 (Thu, 10 Dec 2009)
New Revision: 13508

Modified:
   data/CVE/list
Log:
adjust severity


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-10 21:33:59 UTC (rev 13507)
+++ data/CVE/list	2009-12-10 21:35:06 UTC (rev 13508)
@@ -1233,57 +1233,57 @@
 CVE-2009-3737
 	RESERVED
 CVE-2009-3736 (ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, ...)
-	- libtool 2.2.6b-1 (medium; bug #559797)
-	- arts <unfixed> (medium; bug #559798)
-	- bochs <unfixed> (medium; bug #559799)
-	- camserv <unfixed> (medium; bug #559800)
-	- collectd <unfixed> (medium; bug #559801)
-	- courier-authlib <unfixed> (medium; bug #559802)
-	- cvsnt <unfixed> (medium; bug #559803)
-	- ggobi <unfixed> (medium; bug #559806)
-	- glame <unfixed> (medium; bug #559807)
-	- gnash <unfixed> (medium; bug #559808)
-	- gnu-smalltalk <unfixed> (medium; bug #559809)
-	- google-gadgets <unfixed> (medium; bug #559810)
-	- graphicsmagick <unfixed> (medium; bug #559811)
-	- graphviz <unfixed> (medium; bug #559812)
-	- guile-1.6 <unfixed> (medium; bug #559813)
-	- hamlib <unfixed> (medium; bug #559814)
-	- hercules <unfixed> (medium; bug #559815)
-	- jags <unfixed> (medium; bug #559816)
-	- kdelibs <unfixed> (medium; bug #559817)
-	- libannodex <removed> (medium; bug #559818)
-	- libextractor <unfixed> (medium; bug #559819)
-	- libmcrypt <unfixed> (medium; bug #559820)
-	- libtunepimp <unfixed> (medium; bug #559821)
-	- mp4h <unfixed> (medium; bug #559822)
-	- naim <unfixed> (medium; bug #559823)
-	- parser-mysql <unfixed> (medium; bug #559824)
-	- pinball <unfixed> (medium; bug #559825)
-	- redland <unfixed> (medium; bug #559826)
+	- libtool 2.2.6b-1 (low; bug #559797)
+	- arts <unfixed> (low; bug #559798)
+	- bochs <unfixed> (low; bug #559799)
+	- camserv <unfixed> (low; bug #559800)
+	- collectd <unfixed> (low; bug #559801)
+	- courier-authlib <unfixed> (low; bug #559802)
+	- cvsnt <unfixed> (low; bug #559803)
+	- ggobi <unfixed> (low; bug #559806)
+	- glame <unfixed> (low; bug #559807)
+	- gnash <unfixed> (low; bug #559808)
+	- gnu-smalltalk <unfixed> (low; bug #559809)
+	- google-gadgets <unfixed> (low; bug #559810)
+	- graphicsmagick <unfixed> (low; bug #559811)
+	- graphviz <unfixed> (low; bug #559812)
+	- guile-1.6 <unfixed> (low; bug #559813)
+	- hamlib <unfixed> (low; bug #559814)
+	- hercules <unfixed> (low; bug #559815)
+	- jags <unfixed> (low; bug #559816)
+	- kdelibs <unfixed> (low; bug #559817)
+	- libannodex <removed> (low; bug #559818)
+	- libextractor <unfixed> (low; bug #559819)
+	- libmcrypt <unfixed> (low; bug #559820)
+	- libtunepimp <unfixed> (low; bug #559821)
+	- mp4h <unfixed> (low; bug #559822)
+	- naim <unfixed> (low; bug #559823)
+	- parser-mysql <unfixed> (low; bug #559824)
+	- pinball <unfixed> (low; bug #559825)
+	- redland <unfixed> (low; bug #559826)
 	[etch] - redland <not-affected> (Versions prior to 1.0.9 don't use libtool/libltdl)
 	[lenny] - redland <not-affected> (Versions prior to 1.0.9 don't use libtool/libltdl)
-	- siproxd <unfixed> (medium; bug #559827)
-	- ski <unfixed> (medium; bug #559828)
-	- synfig <unfixed> (medium; bug #559829)
-	- xmlsec1 1.2.14-1 (medium; bug #559831)
-	- clamav <unfixed> (medium; bug #559832)
-	- imagemagick <unfixed> (medium; bug #559833)
+	- siproxd <unfixed> (low; bug #559827)
+	- ski <unfixed> (low; bug #559828)
+	- synfig <unfixed> (low; bug #559829)
+	- xmlsec1 1.2.14-1 (low; bug #559831)
+	- clamav <unfixed> (low; bug #559832)
+	- imagemagick <unfixed> (low; bug #559833)
 	- hypre 2.4.0b-5 (low; bug #559834)
 	[etch] - hypre <no-dsa> (Minor issue)
 	[lenny] - hypre <no-dsa> (Minor issue)
-	- lam <unfixed> (medium; bug #559835)
-	- openmpi 1.3.3-4 (medium; bug #559836)
-	- parser <unfixed> (medium; bug #559837)
-	- pdsh <unfixed> (medium; bug #559838)
+	- lam <unfixed> (low; bug #559835)
+	- openmpi 1.3.3-4 (low; bug #559836)
+	- parser <unfixed> (low; bug #559837)
+	- pdsh <unfixed> (low; bug #559838)
 	- sbnc <not-affected> (All released/unstable versions use the system copy of libtool)
-	- sdcc <unfixed> (medium; bug #559840)
-	- wml <unfixed> (medium; bug #559841)
-	- proftpd-dfsg <unfixed> (medium; bug #559842)
+	- sdcc <unfixed> (low; bug #559840)
+	- wml <unfixed> (low; bug #559841)
+	- proftpd-dfsg <unfixed> (low; bug #559842)
 	- babel 1.4.0.dfsg-5 (low; bug #559843)
 	[lenny] - babel <no-dsa> (Minor issue)
-	- libprelude <unfixed> (medium; bug #559844)
-	- heartbeat <unfixed> (medium; bug #559845)
+	- libprelude <unfixed> (low; bug #559844)
+	- heartbeat <unfixed> (low; bug #559845)
 CVE-2009-3735
 	RESERVED
 CVE-2009-3734

More information about the Secure-testing-commits mailing list