[Secure-testing-commits] r11008 - in data: CVE DSA
white at alioth.debian.org
white at alioth.debian.org
Wed Jan 21 17:56:40 UTC 2009
Author: white
Date: 2009-01-21 17:56:40 +0000 (Wed, 21 Jan 2009)
New Revision: 11008
Modified:
data/CVE/list
data/DSA/list
Log:
ice* engine CVE fixed in latest DSA rounds
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-01-21 17:34:28 UTC (rev 11007)
+++ data/CVE/list 2009-01-21 17:56:40 UTC (rev 11008)
@@ -2444,7 +2444,10 @@
CVE-2008-5053 (PHP remote file inclusion vulnerability in admin.rssreader.php in the ...)
NOT-FOR-US: com_rssreader component for Joomla!
CVE-2008-5052 (The AppendAttributeValue function in the JavaScript engine in Mozilla ...)
- TODO: check
+ - iceweasel 3.0.4-1
+ - xulrunner 1.9.0.4-1
+ - icedove 2.0.0.19-1
+ - iceape 1.1.13-1
CVE-2008-5051 (SQL injection vulnerability in the JooBlog (com_jb2) component 0.1.1 ...)
NOT-FOR-US: joomla
CVE-2008-5049 (Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger ...)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2009-01-21 17:34:28 UTC (rev 11007)
+++ data/DSA/list 2009-01-21 17:56:40 UTC (rev 11008)
@@ -36,10 +36,10 @@
{CVE-2008-2381}
[etch] - gforge 4.5.14-22etch10
[07 Jan 2009] DSA-1697-1 iceape - several vulnerabilities
- {CVE-2008-0016 CVE-2008-0017 CVE-2008-0304 CVE-2008-2785 CVE-2008-2798 CVE-2008-2799 CVE-2008-2800 CVE-2008-2801 CVE-2008-2802 CVE-2008-2803 CVE-2008-2805 CVE-2008-2807 CVE-2008-2808 CVE-2008-2809 CVE-2008-2810 CVE-2008-2811 CVE-2008-2933 CVE-2008-3835 CVE-2008-3836 CVE-2008-3837 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4067 CVE-2008-4068 CVE-2008-4069 CVE-2008-4070 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5024 CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512}
+ {CVE-2008-0016 CVE-2008-0017 CVE-2008-0304 CVE-2008-2785 CVE-2008-2798 CVE-2008-2799 CVE-2008-2800 CVE-2008-2801 CVE-2008-2802 CVE-2008-2803 CVE-2008-2805 CVE-2008-2807 CVE-2008-2808 CVE-2008-2809 CVE-2008-2810 CVE-2008-2811 CVE-2008-2933 CVE-2008-3835 CVE-2008-3836 CVE-2008-3837 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4067 CVE-2008-4068 CVE-2008-4069 CVE-2008-4070 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5024 CVE-2008-5052 CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512}
[etch] - iceape 1.0.13~pre080614i-0etch1
[07 Jan 2009] DSA-1696-1 icedove - several vulnerabilities
- {CVE-2008-0016 CVE-2008-1380 CVE-2008-3835 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4067 CVE-2008-4068 CVE-2008-4070 CVE-2008-4582 CVE-2008-5012 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5024 CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512}
+ {CVE-2008-0016 CVE-2008-1380 CVE-2008-3835 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4067 CVE-2008-4068 CVE-2008-4070 CVE-2008-4582 CVE-2008-5012 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5024 CVE-2008-5052 CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512}
[etch] - icedove 1.5.0.13+1.5.0.15b.dfsg1+prepatch080614i-0etch1
[02 Jan 2009] DSA-1695-1 ruby1.8 ruby1.9 - denial of service
{CVE-2008-3443}
@@ -117,13 +117,13 @@
{CVE-2008-5187}
[etch] - imlib2 1.3.0.0debian1-4+etch2
[24 Nov 2008] DSA-1671-1 iceweasel - several vulnerabilities
- {CVE-2008-0017 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5019 CVE-2008-5021 CVE-2008-5022 CVE-2008-5023 CVE-2008-5024}
+ {CVE-2008-0017 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5019 CVE-2008-5021 CVE-2008-5022 CVE-2008-5023 CVE-2008-5024 CVE-2008-5052}
[etch] - iceweasel 2.0.0.18-0etch1
[24 Nov 2008] DSA-1670-1 enscript - arbitrary code execution
{CVE-2008-3863 CVE-2008-4306 CVE-2008-5078}
[etch] - enscript 1.6.4-11.1
[23 Nov 2008] DSA-1669-1 xulrunner - several vulnerabilities
- {CVE-2008-0016 CVE-2008-0017 CVE-2008-3835 CVE-2008-3836 CVE-2008-3837 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4066 CVE-2008-4067 CVE-2008-4068 CVE-2008-4069 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5023 CVE-2008-5024 CVE-2008-4063 CVE-2008-4064}
+ {CVE-2008-0016 CVE-2008-0017 CVE-2008-3835 CVE-2008-3836 CVE-2008-3837 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4065 CVE-2008-4066 CVE-2008-4067 CVE-2008-4068 CVE-2008-4069 CVE-2008-4582 CVE-2008-5012 CVE-2008-5013 CVE-2008-5014 CVE-2008-5017 CVE-2008-5018 CVE-2008-5021 CVE-2008-5022 CVE-2008-5023 CVE-2008-5024 CVE-2008-5052 CVE-2008-4063 CVE-2008-4064}
[etch] - xulrunner 1.8.0.15~pre080614h-0etch1
[22 Nov 2008] DSA-1668-1 hf - execution of arbitrary code
{CVE-2008-2378}
More information about the Secure-testing-commits
mailing list