[Secure-testing-commits] r11184 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Tue Feb 10 23:02:08 UTC 2009
Author: jmm-guest
Date: 2009-02-10 23:02:08 +0000 (Tue, 10 Feb 2009)
New Revision: 11184
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
tau no-dsa
new tor issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-02-10 21:14:12 UTC (rev 11183)
+++ data/CVE/list 2009-02-10 23:02:08 UTC (rev 11184)
@@ -1,3 +1,7 @@
+CVE-2009-XXXX [tor: potential crash on exit nodes when processing malformed input]
+ - tor 0.2.0.34-1
+CVE-2009-XXXX [tor: DoS vulnerability that could be performed by a directory mirror]
+ - tor 0.2.0.34-1
CVE-2009-0502 (Cross-site scripting (XSS) vulnerability in blocks/html/block_html.php ...)
TODO: check
CVE-2009-0501 (Unspecified vulnerability in the Calendar export feature in Moodle 1.8 ...)
@@ -3376,6 +3380,7 @@
NOT-FOR-US: WinCom LPD
CVE-2008-5157 (tau 2.16.4 allows local users to overwrite arbitrary files via a ...)
- tau <unfixed> (bug #506348)
+ [etch] - tau <no-dsa> (Minor issue)
CVE-2008-5156 (si_mkbootserver in systemimager-server 3.6.3 allows local users to ...)
- systemimager <unfixed> (bug #506269)
CVE-2008-5155 (mail2sms.sh in smsclient 2.0.8z allows local users to overwrite ...)
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2009-02-10 21:14:12 UTC (rev 11183)
+++ data/spu-candidates.txt 2009-02-10 23:02:08 UTC (rev 11184)
@@ -494,6 +494,11 @@
--
+tau (CVE-2008-5157)
+#506348
+
+--
+
tcl8.3/tcl8.4 (CVE-2007-4772)
notified maintainer
More information about the Secure-testing-commits
mailing list