[Secure-testing-commits] r11483 - data/CVE lib/python

kees at alioth.debian.org kees at alioth.debian.org
Fri Mar 27 15:48:32 UTC 2009 

Author: kees
Date: 2009-03-27 15:48:31 +0000 (Fri, 27 Mar 2009)
New Revision: 11483

Modified:
   data/CVE/list
   lib/python/debian_support.py
Log:
NFUs: 31; adjust debian_support to use hashlib

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-03-26 20:12:19 UTC (rev 11482)
+++ data/CVE/list	2009-03-27 15:48:31 UTC (rev 11483)
@@ -1,3 +1,63 @@
+CVE-2009-1092
+	NOT-FOR-US: LIVEAUDIO.LiveAudioCtrl.1 ActiveX
+CVE-2009-1091
+	NOT-FOR-US: Rapidleech
+CVE-2009-1090
+	NOT-FOR-US: Rapidleech
+CVE-2009-1089
+	NOT-FOR-US: Rapidleech
+CVE-2009-1088
+	NOT-FOR-US: Hannon Hill Cascade Server
+CVE-2009-1087
+	NOT-FOR-US: PPLive
+CVE-2009-1085
+	NOT-FOR-US: Piwik
+CVE-2009-1084
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1083
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1082
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1081
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1080
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1079
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1078
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1077
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1076
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1075
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2009-1074
+	NOT-FOR-US: Sun Java System Identity Manager
+CVE-2008-6527
+	NOT-FOR-US: GO4I.NET ASP Forum
+CVE-2008-6526
+	NOT-FOR-US: BosClassifieds
+CVE-2008-6525
+	NOT-FOR-US: Nice PHP FAQ Script
+CVE-2008-6524
+	NOT-FOR-US: openInvoice
+CVE-2008-6523
+	NOT-FOR-US: openInvoice
+CVE-2008-6522
+	NOT-FOR-US: OpenTerracotta
+CVE-2008-6521
+	NOT-FOR-US: OpenTerracotta
+CVE-2008-6520
+	NOT-FOR-US: Xitami Web Server
+CVE-2008-6519
+	NOT-FOR-US: Xitami Web Server
+CVE-2008-6518
+	NOT-FOR-US: VidiScript
+CVE-2008-6517
+	NOT-FOR-US: NewsHOWLER
+CVE-2008-6516
+	NOT-FOR-US: phpKF-Portal
 CVE-2009-1073
 	RESERVED
 CVE-2009-1072 (nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD ...)
@@ -3204,7 +3264,7 @@
 CVE-2009-0216 (GE Fanuc iFIX 5.0 and earlier relies on client-side authentication ...)
 	NOT-FOR-US: GE Fanuc iFIX
 CVE-2009-0215
-	RESERVED
+	NOT-FOR-US: IBM Access Support ActiveX
 CVE-2009-0214 (Unspecified vulnerability in the WebFGServer application in AREVA ...)
 	NOT-FOR-US: WebFGServer
 CVE-2009-0213 (Unspecified vulnerability in the NETIO application in AREVA ...)

Modified: lib/python/debian_support.py
===================================================================
--- lib/python/debian_support.py	2009-03-26 20:12:19 UTC (rev 11482)
+++ lib/python/debian_support.py	2009-03-27 15:48:31 UTC (rev 11483)
@@ -19,7 +19,7 @@
 
 import os
 import re
-import sha
+import hashlib
 import types
 
 import apt_pkg
@@ -185,7 +185,7 @@
 del listReleases
 
 def readLinesSHA1(lines):
-    m = sha.new()
+    m = hashlib.sha()
     for l in lines:
         m.update(l)
     return m.hexdigest()

More information about the Secure-testing-commits mailing list