[Secure-testing-commits] r12268 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sat Jul 4 09:14:24 UTC 2009
Author: joeyh
Date: 2009-07-04 09:14:23 +0000 (Sat, 04 Jul 2009)
New Revision: 12268
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-07-04 02:53:40 UTC (rev 12267)
+++ data/CVE/list 2009-07-04 09:14:23 UTC (rev 12268)
@@ -1684,6 +1684,7 @@
CVE-2009-1629 (ajaxterm.js in AjaxTerm 0.10 and earlier generates session IDs with ...)
- ajaxterm <unfixed> (medium; bug #528938)
CVE-2009-1789 (mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and ...)
+ {DSA-1826-1}
- eggdrop 1.6.19-1.2 (medium; bug #528778)
CVE-2009-XXXX [cron: Incomplete fix for CVE-2006-2607 (setgid() and initgroups() not checked]
- cron 3.0pl1-106 (low; bug #528434)
@@ -32324,7 +32325,7 @@
{DSA-1486-1}
- gnatsweb 4.00-1.1 (low; bug #427156)
CVE-2007-2807 (Stack-based buffer overflow in mod/server.mod/servrmsg.c in Eggdrop ...)
- {DSA-1448-1}
+ {DSA-1826-1 DSA-1448-1}
- eggdrop 1.6.18-1.1 (medium; bug #427157)
CVE-2007-2806 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
NOT-FOR-US: GaliX
More information about the Secure-testing-commits
mailing list