[Secure-testing-commits] r13607 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Sat Dec 19 21:34:50 UTC 2009
Author: jmm-guest
Date: 2009-12-19 21:34:50 +0000 (Sat, 19 Dec 2009)
New Revision: 13607
Modified:
data/CVE/list
data/embedded-code-copies
Log:
more updates on embedded code copies
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-12-19 21:20:09 UTC (rev 13606)
+++ data/CVE/list 2009-12-19 21:34:50 UTC (rev 13607)
@@ -1667,7 +1667,6 @@
- bochs <not-affected> (additional hardening in this package prevents this type of attack; bug #559799)
- camserv <unfixed> (low; bug #559800)
- collectd <unfixed> (low; bug #559801)
- - courier-authlib <unfixed> (low; bug #559802)
- cvsnt <unfixed> (low; bug #559803)
- ggobi 2.1.9~20091212-1 (low; bug #559806)
[etch] - ggobi <no-dsa> (Minor issue)
@@ -1679,7 +1678,9 @@
- graphicsmagick 1.3.5-6 (low; bug #559811)
[lenny] - graphicsmagick <no-dsa> (Minor issue, can be fixed along with later updates)
[etch] - graphicsmagick <no-dsa> (Minor issue, can be fixed along with later updates)
- - guile-1.6 <unfixed> (low; bug #559813)
+ - guile-1.6 1.6.8-7 (low; bug #559813)
+ [etch] - guile-1.6 <no-dsa> (Minor issue)
+ [lenny] - guile-1.6 <no-dsa> (Minor issue)
- hamlib <unfixed> (low; bug #559814)
- hercules <unfixed> (low; bug #559815)
- jags 1.0.4-1 (low; bug #559816)
@@ -1850,7 +1851,7 @@
- vnc4 <unfixed> (low; bug #560949)
[etch] - vnc4 <no-dsa> (minor issue)
[lenny] - vnc4 <no-dsa> (minor issue)
- - xotcl <unfixed> (low; bug #560952)
+ - xotcl <unfixed> (low; bug #560950)
[lenny] - xotcl <no-dsa> (minor issue)
CVE-2009-3719 (Cross-site scripting (XSS) vulnerability in comment.asp in Battle Blog ...)
NOT-FOR-US: Battle Blog
@@ -2354,7 +2355,7 @@
- vnc4 <unfixed> (low; bug #560949)
[etch] - vnc4 <no-dsa> (minor issue)
[lenny] - vnc4 <no-dsa> (minor issue)
- - xotcl <unfixed> (low; bug #560952)
+ - xotcl <unfixed> (low; bug #560950)
[lenny] - xotcl <no-dsa> (minor issue)
CVE-2009-3559 (** DISPUTED ** ...)
- php5 <unfixed> (unimportant)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2009-12-19 21:20:09 UTC (rev 13606)
+++ data/embedded-code-copies 2009-12-19 21:34:50 UTC (rev 13607)
@@ -1535,7 +1535,8 @@
- bochs <unfixed> (embed; bug #560884)
- camserv <unfixed> (embed)
- collectd <unfixed> (embed)
- - courier-authlib <unfixed> (embed)
+ - courier-authlib 0.58-4 (embed)
+ NOTE: The etch version of courier-authlib was the earliest version checked, might be fixed earlier
- cvsnt <unfixed> (embed)
- dico <not-affected> (Uses the system copy of ltdl)
- freeradius 0.1+20010527-1 (embed)
@@ -1548,7 +1549,7 @@
- graphicsmagick 1.3.5-6 (embed)
- graphviz 2.8-3 (embed)
NOTE: The etch version of graphviz was the earliest version checked, might be fixed earlier
- - guile-1.6 <unfixed> (embed)
+ - guile-1.6 1.6.8-7 (embed)
- hamlib <unfixed> (embed)
- hercules <unfixed> (embed)
- jags 1.0.4-3 (embed; bug #560864)
More information about the Secure-testing-commits
mailing list