[Secure-testing-commits] r11761 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Fri May 1 21:29:35 UTC 2009
Author: jmm-guest
Date: 2009-05-01 21:29:35 +0000 (Fri, 01 May 2009)
New Revision: 11761
Modified:
data/CVE/list
Log:
- add first CIFS kernel issue
- add jetty issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-01 21:14:17 UTC (rev 11760)
+++ data/CVE/list 2009-05-01 21:29:35 UTC (rev 11761)
@@ -1,3 +1,7 @@
+CVE-2009-XXXX [jetty: Vulnerability in ResourceHandler and DefaultServlet with aliases]
+ - jetty <unfixed>
+ NOTE: http://jira.codehaus.org/browse/JETTY-1004
+ NOTE: It's not entirely clear, whether version 5 is affected
CVE-2009-1494 (The process_stat function in Memcached 1.2.8 discloses ...)
TODO: check
CVE-2009-1493 (The customDictionaryOpen spell method in the JavaScript API in Adobe ...)
@@ -149,7 +153,8 @@
CVE-2009-1441
RESERVED
CVE-2009-1439 (Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel ...)
- TODO: check
+ - linux-2.6 <unfixed>
+ - linux-2.6.24 <removed>
CVE-2009-1438 (Integer overflow in the CSoundFile::ReadMed function ...)
TODO: check
CVE-2009-1437 (Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka ...)
More information about the Secure-testing-commits
mailing list