[Secure-testing-commits] r13192 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Nov 4 20:42:14 UTC 2009 

Author: jmm-guest
Date: 2009-11-04 20:42:14 +0000 (Wed, 04 Nov 2009)
New Revision: 13192

Modified:
   data/CVE/list
Log:
various updates


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-11-04 19:34:00 UTC (rev 13191)
+++ data/CVE/list	2009-11-04 20:42:14 UTC (rev 13192)
@@ -284,6 +284,7 @@
 CVE-2009-3725 [linux-2.6: priviledged code execution]
 	RESERVED
 	- linux-2.6 <unfixed> (medium)
+	[etch] - linux-2.6 <not-affected> (Vulnerable code not present)
 	- linux-2.6.24 <removed> (medium)
 CVE-2009-3724
 	RESERVED
@@ -557,7 +558,7 @@
 	- libhtml-parser-perl 3.64-1 (bug #552531)
 	NOTE: http://secunia.com/advisories/37155/
 CVE-2009-3626 (Perl 5.10.1 allows context-dependent attackers to cause a denial of ...)
-	- perl <unfixed> (bug #552291)
+	- perl 5.10.1-6 (bug #552291)
 	[lenny] - perl <not-affected> (Vulnerable code not present)
 	[etch] - perl <not-affected> (Vulnerable code not present)
 CVE-2009-3625 (Directory traversal vulnerability in www/index.php in Sahana 0.6.2.2 ...)
@@ -1195,9 +1196,16 @@
 	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
 CVE-2009-3379 (Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla ...)
 	- libvorbis 1.2.3-1
+	- xulrunner 1.9.1.4-1
+	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5)
+	[etch] - xulrunner <not-affected> (Only affects Firefox 3.5)
 CVE-2009-3378 (The oggplay_data_handle_theora_frame function in ...)
+	- xulrunner 1.9.1.4-1
 	- liboggplay <unfixed> (bug filed)
 CVE-2009-3377 (Multiple unspecified vulnerabilities in liboggz before ...)
+	- xulrunner 1.9.1.4-1
+	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5)
+	[etch] - xulrunner <not-affected> (Only affects Firefox 3.5)
 	- liboggz 0.9.9-1
 CVE-2009-3376 (Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey ...)
 	{DSA-1922-1}
@@ -6819,7 +6827,7 @@
 CVE-2009-1564
 	RESERVED
 CVE-2009-1563 (Array index error in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x ...)
-	- nspr <unfixed>
+	- nspr 4.8-2
 	[etch] - nspr <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
 CVE-2009-1562
 	RESERVED

More information about the Secure-testing-commits mailing list