[Secure-testing-commits] r13278 - data/CVE
Nico Golde
nion at alioth.debian.org
Thu Nov 12 18:37:53 UTC 2009
Author: nion
Date: 2009-11-12 18:37:53 +0000 (Thu, 12 Nov 2009)
New Revision: 13278
Modified:
data/CVE/list
Log:
- new gimp issue (CVE-2009-1570)
- CVE-2009-3720 fixed in expat 2.0.1-5, w3c-libwww removed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-12 17:50:31 UTC (rev 13277)
+++ data/CVE/list 2009-11-12 18:37:53 UTC (rev 13278)
@@ -461,8 +461,8 @@
RESERVED
CVE-2009-3720 (The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...)
{DSA-1921-1}
- - expat <unfixed> (low; bug #551936)
- - w3c-libwww <unfixed> (low; bug #551938)
+ - expat 2.0.1-5 (low; bug #551936)
+ - w3c-libwww <removed> (low; bug #551938)
[etch] - w3c-libwww <no-dsa> (Minor issue, only used by fringe apps)
- python-xml <unfixed> (low; bug #551939)
- python2.5 <unfixed> (low)
@@ -7080,7 +7080,8 @@
- ipsec-tools 1:0.7.1-1.4 (medium; bug #527634)
CVE-2009-1571
RESERVED
-CVE-2009-1570
+CVE-2009-1570 [gimp bmp parsing integer overflow]
+ - gimp <unfixed> (medium; bug #555929)
RESERVED
CVE-2009-1569
RESERVED
More information about the Secure-testing-commits
mailing list