[Secure-testing-commits] r13565 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Tue Dec 15 22:50:12 UTC 2009
Author: gilbert-guest
Date: 2009-12-15 22:50:12 +0000 (Tue, 15 Dec 2009)
New Revision: 13565
Modified:
data/CVE/list
Log:
- some not affected kernel versions
- piwik has an itp
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-12-15 22:04:38 UTC (rev 13564)
+++ data/CVE/list 2009-12-15 22:50:12 UTC (rev 13565)
@@ -111,6 +111,7 @@
- linux-2.6.24 <not-affected> (vulnerabile code introduced in 2.6.27)
CVE-2009-4306 (Unspecified vulnerability in the EXT4_IOC_MOVE_EXT (aka move extents) ...)
- linux-2.6 <unfixed> (medium)
+ [etch] - linux-2.6 <not-affected> (ext4 introduced in 2.6.19)
- linux-2.6.24 <removed> (medium)
CVE-2009-4291
RESERVED
@@ -1038,6 +1039,7 @@
CVE-2009-4004 (Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in ...)
- linux-2.6 2.6.32-1 (medium)
[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
+ [lenny] - linux-2.6 <not-affected> (vulnerable code not present)
- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
- kvm 88+dfsg-2 (medium; bug #557736)
NOTE: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a9e38c3e01ad242fe2a625354cf065c34b01e3aa
@@ -10363,7 +10365,7 @@
CVE-2009-1087 (Multiple argument injection vulnerabilities in PPLive.exe in PPLive ...)
NOT-FOR-US: PPLive
CVE-2009-1085 (Piwik 0.2.32 and earlier stores sensitive information under the web ...)
- NOT-FOR-US: Piwik
+ - piwik <itp> (bug #506933)
CVE-2009-1084 (Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not ...)
NOT-FOR-US: Sun Java System Identity Manager
CVE-2009-1083 (Sun Java System Identity Manager (IdM) 7.0 through 8.0 on Linux, AIX, ...)
More information about the Secure-testing-commits
mailing list