[Secure-testing-commits] r12175 - data/CVE

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2009-06-21 19:31:07 +0000 (Sun, 21 Jun 2009)
New Revision: 12175

Modified:
   data/CVE/list
Log:
some of the FreeBSD issues affect the kfreebsd port


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-06-21 17:26:39 UTC (rev 12174)
+++ data/CVE/list	2009-06-21 19:31:07 UTC (rev 12175)
@@ -222,12 +222,6 @@
 	- kfreebsd-7 7.2-2
 	[lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported)
 	NOTE: http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc
-CVE-2009-XXXX [freebsd Local information disclosure via direct pipe writes]
-	- kfreebsd-6 <removed>
-	[lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported)
-	- kfreebsd-7 7.2-2
-	[lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported)
-	NOTE: http://security.freebsd.org/advisories/FreeBSD-SA-09:09.pipe.asc
 CVE-2009-XXXX [adtool leaks password in environment]
 	- adtool 1.3.2-1 (unimportant)
 	NOTE: adtool has safe means to specify the password, so this boils
@@ -438,7 +432,10 @@
 CVE-2009-1936 (_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a ...)
 	NOT-FOR-US: cpCommerce
 CVE-2009-1935 (Integer overflow in the pipe_build_write_buffer function ...)
-	NOT-FOR-US: FreeBSD
+	- kfreebsd-6 <removed>
+	[lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported)
+	- kfreebsd-7 7.2-2
+	[lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported)
 CVE-2009-1934 (Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in ...)
 	NOT-FOR-US:  Sun Java System Web Server
 CVE-2009-1933 (Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, ...)