[Secure-testing-commits] r11507 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Tue Mar 31 21:40:20 UTC 2009
Author: jmm-guest
Date: 2009-03-31 21:40:19 +0000 (Tue, 31 Mar 2009)
New Revision: 11507
Modified:
data/CVE/list
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
- bugzilla no-dsa
- xulrunner fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-03-31 21:14:10 UTC (rev 11506)
+++ data/CVE/list 2009-03-31 21:40:19 UTC (rev 11507)
@@ -12,7 +12,7 @@
TODO: check
CVE-2009-1169 (The txMozillaXSLTProcessor::TransformToDoc function in Mozilla Firefox ...)
{DSA-1756-1}
- TODO: check
+ - xulrunner 1.9.0.8-1
CVE-2009-1168
RESERVED
CVE-2009-1167
@@ -390,7 +390,7 @@
TODO: check
CVE-2009-1044 (Mozilla Firefox 3.0.7 on Windows 7 allows remote attackers to execute ...)
{DSA-1756-1}
- TODO: check
+ - xulrunner 1.9.0.8-1
CVE-2009-1043 (Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows ...)
NOT-FOR-US: Microsoft
CVE-2009-1042 (Unspecified vulnerability in Apple Safari on Mac OS X 10.5.6 allows ...)
@@ -2491,14 +2491,24 @@
[lenny] - bugzilla <not-affected> (Versions before 3.2.1, 3.0.7, and 3.3.2 were not affected)
CVE-2009-0485 (Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to ...)
- bugzilla <unfixed> (low)
+ [etch] - bugzilla <no-dsa> (Minor issue)
+ [lenny] - bugzilla <no-dsa> (Minor issue)
CVE-2009-0484 (Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before ...)
- bugzilla <unfixed> (low)
+ [etch] - bugzilla <no-dsa> (Minor issue)
+ [lenny] - bugzilla <no-dsa> (Minor issue)
CVE-2009-0483 (Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 ...)
- bugzilla <unfixed> (low)
+ [etch] - bugzilla <no-dsa> (Minor issue)
+ [lenny] - bugzilla <no-dsa> (Minor issue)
CVE-2009-0482 (Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 ...)
- bugzilla <unfixed> (low)
+ [etch] - bugzilla <no-dsa> (Minor issue)
+ [lenny] - bugzilla <no-dsa> (Minor issue)
CVE-2009-0481 (Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and ...)
- bugzilla <unfixed> (low)
+ [etch] - bugzilla <no-dsa> (Minor issue)
+ [lenny] - bugzilla <no-dsa> (Minor issue)
CVE-2009-0480 (The IP implementation in Sun Solaris 8 through 10, and OpenSolaris ...)
NOT-FOR-US: Solaris
CVE-2008-6098 (Bugzilla 3.2 before 3.2 RC2, 3.0 before 3.0.6, 2.22 before 2.22.6, ...)
@@ -13162,6 +13172,7 @@
- emacs22 22.2+2-3 (low; bug #480885)
- xemacs21 <unfixed> (low; bug #480886)
[etch] - xemacs21 <no-dsa> (Minor issue)
+ [lenny] - xemacs21 <no-dsa> (Minor issue)
- emacs21 21.4a+1-5.5 (low; bug #480877)
[etch] - emacs21 <no-dsa> (Minor issue)
CVE-2008-2147 (Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 ...)
Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt 2009-03-31 21:14:10 UTC (rev 11506)
+++ data/ospu-candidates.txt 2009-03-31 21:40:19 UTC (rev 11507)
@@ -81,6 +81,8 @@
#502019
notified maintainer
+bugzilla (CVE-2009-0481 to CVE-2009-0485)
+
--
byacc (CVE-2008-3196)
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2009-03-31 21:14:10 UTC (rev 11506)
+++ data/spu-candidates.txt 2009-03-31 21:40:19 UTC (rev 11507)
@@ -10,6 +10,10 @@
--
+bugzilla (CVE-2009-0481 to CVE-2009-0485)
+
+--
+
kfreebsd-7 (CVE-2009-1041)
--
More information about the Secure-testing-commits
mailing list