[Secure-testing-commits] r11490 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Mon Mar 30 17:06:48 UTC 2009
Author: jmm-guest
Date: 2009-03-30 17:06:47 +0000 (Mon, 30 Mar 2009)
New Revision: 11490
Modified:
data/CVE/list
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
- multiple java6 issues fixed
- new xfig issue
- systemtap fixed
- avahi fixed
- opensc fixed
- openldap no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-03-30 10:10:29 UTC (rev 11489)
+++ data/CVE/list 2009-03-30 17:06:47 UTC (rev 11490)
@@ -1,3 +1,51 @@
+CVE-2009-1107 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1106 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1105 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1104 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1103 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1102 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1101 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1100 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1099 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1098 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1097 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1096 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1095 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1094 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-1093 [Multiple Java issues]
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
+CVE-2009-XXXX [unspecified xfig temp issue]
+ - xfig 1:3.2.5.a-1
+ TODO: check
CVE-2009-XXXX [auth2db: SQL injection]
- auth2db 0.2.5-2+dfsg-1.1 (bug #521823; low)
[lenny] - auth2db 0.2.5-2+dfsg-1+lenny1
@@ -899,6 +947,7 @@
CVE-2009-0784
RESERVED
{DSA-1755-1}
+ - systemtap 0.0.20090314-2
CVE-2009-0783
RESERVED
CVE-2009-0782
@@ -967,7 +1016,7 @@
{DSA-1735-1}
- znc 0.066-1 (bug #516950)
CVE-2009-0758 (The originates_from_local_legacy_unicast_socket function in ...)
- - avahi <unfixed> (low; bug #517683)
+ - avahi 0.6.24-3 (low; bug #517683)
[etch] - avahi <no-dsa> (Minor issue)
[lenny] - avahi <no-dsa> (Minor issue)
NOTE: reflector is off by default
@@ -2705,7 +2754,7 @@
[lenny] - audacity 1.3.5-2+lenny1
CVE-2009-0368 (OpenSC before 0.11.7 allows physically proximate attackers to bypass ...)
{DSA-1734-1}
- - opensc <unfixed>
+ - opensc 0.11.7-1
[etch] - opensc <not-affected> (vulnerable code not present)
CVE-2009-0367 (The Python AI module in Wesnoth 1.4.x and 1.5 before 1.5.11 allows ...)
{DSA-1737-1}
@@ -45773,6 +45822,8 @@
- clamav <not-affected> (clamav-freshclam doesn't ship freshclam setuid or setgid)
CVE-2006-2426 (Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 ...)
- sun-java5 1.5.0-10-1 (bug #384734)
+ - sun-java6 6-13-1
+ [lenny] - sun-java6 <no-dsa> (Non-free not supported)
CVE-2006-2425 (Multiple cross-site scripting (XSS) vulnerabilities in PRV.php in ...)
NOT-FOR-US: phpRemoteView
CVE-2006-2424 (PHP remote file inclusion vulnerability in ezUserManager 1.6 and ...)
@@ -56064,6 +56115,9 @@
- linux-2.6 2.6.12-1
CVE-2005-XXXX [Minor local DoS as libldap]
- openldap 2.4.13 (bug #253838; low)
+ - openldap2.3 <removed>
+ [lenny] - openldap <no-dsa> (Minor issue)
+ [etch] - openldap2.3 <no-dsa> (Minor issue)
CVE-2005-XXXX [Insecure bounds checking in mpack's content parser]
- mpack 1.6-1 (bug #216566)
CVE-2005-XXXX [coreutils ignores umask when using -m in mkdir, mkfifo and mknod]
Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt 2009-03-30 10:10:29 UTC (rev 11489)
+++ data/ospu-candidates.txt 2009-03-30 17:06:47 UTC (rev 11490)
@@ -426,6 +426,11 @@
--
+openldap
+#253838
+
+--
+
p3nfs (CVE-2008-5154)
bug #506270
notified maintainer
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2009-03-30 10:10:29 UTC (rev 11489)
+++ data/spu-candidates.txt 2009-03-30 17:06:47 UTC (rev 11490)
@@ -23,6 +23,11 @@
--
+openldap
+#253838
+
+--
+
tau (CVE-2008-5157)
#506348
notified maintainer
More information about the Secure-testing-commits
mailing list