[Secure-testing-commits] r13240 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Nov 8 21:14:17 UTC 2009
Author: joeyh
Date: 2009-11-08 21:14:17 +0000 (Sun, 08 Nov 2009)
New Revision: 13240
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-08 20:00:46 UTC (rev 13239)
+++ data/CVE/list 2009-11-08 21:14:17 UTC (rev 13240)
@@ -638,6 +638,7 @@
- kvm <unfixed> (medium; bug #553590)
[lenny] - kvm <not-affected> (Vulnerable code not present)
CVE-2009-3615 (The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and ...)
+ {DSA-1932-1}
- pidgin 2.6.3-1
NOTE: http://pidgin.im/news/security/?id=41
CVE-2009-3614 [oping suid 0 arbitrary file disclosure]
@@ -4417,7 +4418,7 @@
- xulrunner 1.9.0.12-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
CVE-2009-2463 (Integer overflow in a base64 decoding function in Mozilla Firefox ...)
- {DSA-1840-1}
+ {DSA-1931-1 DSA-1840-1}
- nspr 4.8.2-1
[etch] - nspr <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
CVE-2009-2462 (The browser engine in Mozilla Firefox before 3.0.12 and Thunderbird ...)
@@ -6891,6 +6892,7 @@
CVE-2009-1564
RESERVED
CVE-2009-1563 (Array index error in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x ...)
+ {DSA-1931-1}
- nspr 4.8-2
[etch] - nspr <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
CVE-2009-1562
More information about the Secure-testing-commits
mailing list