[Secure-testing-commits] r13285 - in data: . CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Sun Nov 15 04:38:32 UTC 2009 

Author: gilbert-guest
Date: 2009-11-15 04:38:32 +0000 (Sun, 15 Nov 2009)
New Revision: 13285

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
- some prototypejs updates
- eglibc issue fixed in sid

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-11-15 04:38:21 UTC (rev 13284)
+++ data/CVE/list	2009-11-15 04:38:32 UTC (rev 13285)
@@ -10,6 +10,11 @@
 	RESERVED
 CVE-2009-3925
 	RESERVED
+CVE-2009-XXXX [eglibc: ldd arbitrary code execution]
+	- eglibc 2.10.1-7 (low; bug #552518)
+	- glibc <removed> (low; bug #552518)
+	[etch] - glibc <no-dsa> (minor issue)
+	[lenny] - glibc <no-dsa> (minor issue)
 CVE-2009-XXXX [dansguardian: not blocking sites]
 	- dansguardian <unfixed> (low; bug #548108)
 CVE-2009-3924 (Buffer overflow in pbsv.dll, as used in Soldier of Fortune II and ...)
@@ -1961,7 +1966,7 @@
 	[etch] - mt-daapd <no-dsa> (minor issue)
 	- mediatomb <unfixed> (low; bug #555232)
 	[lenny] - mediatomb <no-dsa> (minor issue)
-	- op-panel <unfixed> (low; bug #555234)
+	- op-panel 0.30~dfsg-1 (low; bug #555234)
 	- ebug-http <unfixed> (low; bug #555235)
 	- poker-network <unfixed> (low; bug #555237)
 	[etch] - poker-network <no-dsa> (minor issue)
@@ -1983,7 +1988,7 @@
 	[lenny] - symfony <no-dsa> (minor issue)
 	- jscropperui 1.2.1-1 (low; bug #555255)
 	[lenny] - jscropperui <no-dsa> (minor issue)
-	- rt-extension-emailcompletion <unfixed> (low; bug #555258)
+	- rt-extension-emailcompletion <not-affected> (prototype.js not included in the binary package; bug #555258)
 	- scriptaculous 1.8.3-1 (low; bug #555259)
 	[lenny] - scriptaculous <no-dsa> (Minor issue)
 	- activeldap 1.0.9-1 (low; bug #555263)
@@ -38666,7 +38671,7 @@
 	- mt-daapd 0.9~r1696.dfsg-6 (low; bug #555231)
 	[etch] - mt-daapd <no-dsa> (minor issue)
 	- mediatomb 0.11.0-3 (low; bug #555232)
-	- op-panel <unfixed> (low; bug #555234)
+	- op-panel 0.30~dfsg-1 (low; bug #555234)
 	- ebug-http <unfixed> (low; bug #555235)
 	- poker-network <unfixed> (low; bug #555237)
 	[etch] - poker-network <no-dsa> (minor issue)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2009-11-15 04:38:21 UTC (rev 13284)
+++ data/embedded-code-copies	2009-11-15 04:38:32 UTC (rev 13285)
@@ -676,7 +676,7 @@
 	- otrs2 2.3.4-6 (embed; bug #555267)
 	- webcalendar <unfixed> (embed; bug #555269)
 	- redmine 0.9.0~svn2907-1 (embed; bug #555270)
-	- jifty <unfixed> (embed; bug #555271)
+	- jifty 0.90519-1 (embed; bug #555271)
 	- jquery <unfixed> (embed; bug #555272)
 	- passenger 2.2.5debian1-1 (embed; bug #555273)
 	- plone3 <unfixed> (embed; bug #555275)
@@ -770,7 +770,7 @@
 	- typo3-src 4.2.3-1 (embed)
 	- request-tracker3.6 <unfixed> (embed)
 	- request-tracker3.8 <unfixed> (embed)
-	- rt-extension-emailcompletion <unfixed> (embed)
+	- rt-extension-emailcompletion <not-affected> (prototype.js not included in the binary package)
 	- wordpress 2.5.0-2 (embed)
 
 libmarkdown-php

More information about the Secure-testing-commits mailing list