[Secure-testing-commits] r13260 - in data: . CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Tue Nov 10 04:12:03 UTC 2009
Author: gilbert-guest
Date: 2009-11-10 04:11:58 +0000 (Tue, 10 Nov 2009)
New Revision: 13260
Modified:
data/CVE/list
data/embedded-code-copies
Log:
some fixed prototypejs issues; thanks to some quick reaction by quite a few maintainers!
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-10 03:05:25 UTC (rev 13259)
+++ data/CVE/list 2009-11-10 04:11:58 UTC (rev 13260)
@@ -1883,12 +1883,11 @@
- asterisk 1:1.6.2.0~rc3-1 (low; bug #555220)
[etch] - asterisk <no-dsa> (Minor issue)
[lenny] - asterisk <no-dsa> (Minor issue)
- - auth2db <unfixed> (low; bug #555217)
- [lenny] - auth2db <no-dsa> (minor issue)
+ - auth2db 0.2.5-2+dfsg-1 (low; bug #555217)
- libaws <unfixed> (low; bug #555221)
[etch] - libaws <no-dsa> (minor issue)
[lenny] - libaws <no-dsa> (minor issue)
- - libjson-ruby <unfixed> (low; bug #555223)
+ - libjson-ruby 1.1.4-1 (low; bug #555223)
[lenny] - libjson-ruby <no-dsa> (minor issue)
- lucene2 <unfixed> (low; bug #555225)
[etch] - lucene2 <not-affected> (prototype.js not present)
@@ -1923,7 +1922,7 @@
[lenny] - pixelpost <no-dsa> (minor issue)
- symfony <unfixed> (low; bug #555250)
[lenny] - symfony <no-dsa> (minor issue)
- - jscropperui <unfixed> (low; bug #555255)
+ - jscropperui 1.2.1-1 (low; bug #555255)
[lenny] - jscropperui <no-dsa> (minor issue)
- rt-extension-emailcompletion <unfixed> (low; bug #555258)
- scriptaculous 1.8.3-1 (low; bug #555259)
@@ -3306,7 +3305,6 @@
RESERVED
- cups <unfixed> (low)
- cupsys <removed>
- [etch] - cupsys 1.2.7-4+etch9
CVE-2009-2819
RESERVED
CVE-2009-2818
@@ -38588,9 +38586,7 @@
NOTE: The frameworks should be fixed in any case.
CVE-2007-2383 (The Prototype (prototypejs) framework before 1.5.1 RC3 exchanges data ...)
- prototypejs <not-affected> (fixed before initial upload)
- - auth2db <unfixed> (low; bug #555217)
- [etch] - auth2db <no-dsa> (minor issue)
- [lenny] - auth2db <no-dsa> (minor issue)
+ - auth2db 0.2.5-2+dfsg-1 (low; bug #555217)
- asterisk 1:1.6.2.0~rc3-1 (low; bug #555220)
[etch] - asterisk <no-dsa> (minor issue)
[lenny] - asterisk <no-dsa> (minor issue)
@@ -38626,7 +38622,7 @@
[lenny] - pixelpost <no-dsa> (minor issue)
- symfony <unfixed> (low; bug #555250)
[lenny] - symfony <no-dsa> (minor issue)
- - jscropperui <unfixed> (low; bug #555255)
+ - jscropperui 1.2.1-1 (low; bug #555255)
[lenny] - jscropperui <no-dsa> (minor issue)
- rt-extension-emailcompletion <not-affected> (fixed since initial inclusion)
- scriptaculous <not-affected> (fixed since initial inclusion)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2009-11-10 03:05:25 UTC (rev 13259)
+++ data/embedded-code-copies 2009-11-10 04:11:58 UTC (rev 13260)
@@ -643,10 +643,10 @@
prototypejs
- netbeans-ide 6.0.1+dfsg-2 (embed)
- - auth2db <unfixed> (embed; bug #555218)
+ - auth2db 0.2.5-2+dfsg-1 (embed; bug #555218)
- webcit <unfixed> (embed; bug #555219)
- asterisk 1:1.6.2.0~rc3-1 (embed)
- - libjson-ruby <unfixed> (embed; bug #555224)
+ - libjson-ruby 1.1.4-1 (embed; bug #555224)
- lucene2 <unfixed> (embed; bug #555226)
- horde3 <unfixed> (embed)
- knowledgeroot <unfixed> (embed; bug #555230)
@@ -662,10 +662,10 @@
- ampache 3.4.1-2 (embed)
- exaile <unfixed> (embed; bug #555245)
- hobix <unfixed> (embed; bug #555247)
- - zabbix <unfixed> (embed; bug #555250)
+ - zabbix 1.6.6-4 (embed; bug #555250)
- chora2 <unfixed> (embed; bug #555253)
- gollem <unfixed> (embed; bug # 555254)
- - jscropperui <unfixed> (embed; bug #555257)
+ - jscropperui 1.2.1-1 (embed; bug #555257)
- scriptaculous <not-affected> (uses system prototype.js since initial upload; bug #555260)
- ingo1 <unfixed> (embed; bug #555261)
- kronolith2 <unfixed> (embed; bug #555262)
@@ -677,7 +677,7 @@
- redmine 0.9.0~svn2907-1 (embed; bug #555270)
- jifty <unfixed> (embed; bug #555271)
- jquery <unfixed> (embed; bug #555272)
- - passenger <unfixed> (embed; bug #555273)
+ - passenger 2.2.5debian1-1 (embed; bug #555273)
- plone3 <unfixed> (embed; bug #555275)
- wesnoth <unfixed> (embed; bug #555277)
- xulrunner <unfixed> (embed)
More information about the Secure-testing-commits
mailing list