[Secure-testing-commits] r13330 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Fri Nov 20 18:35:57 UTC 2009
Author: geissert
Date: 2009-11-20 18:35:57 +0000 (Fri, 20 Nov 2009)
New Revision: 13330
Modified:
data/CVE/list
Log:
kde4's libs is in kde4libs, add it to the other issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-20 18:02:17 UTC (rev 13329)
+++ data/CVE/list 2009-11-20 18:35:57 UTC (rev 13330)
@@ -382,6 +382,7 @@
NOT-FOR-US: OpenDocMan
CVE-2009-XXXX [multiple missing input sanity checks in KDE]
- kdelibs <unfixed> (low)
+ - kde4libs <unfixed> (low)
[lenny] - kdelibs <no-dsa> (minor and unlikely to be exploited)
[etch] - kdelibs <no-dsa> (minor and unlikely to be exploited)
NOTE: http://www.ocert.org/advisories/ocert-2009-015.html
@@ -10566,6 +10567,7 @@
NOT-FOR-US: Foxit JPEG2000/JBIG2 Decoder add-on
CVE-2009-0689 (The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in ...)
- kdelibs <unfixed>
+ - kde4libs <unfixed>
TODO: check and merge with 2009-1563?
NOTE: This is CVE-2009-1563
NOTE: http://securityreason.com/achievement_securityalert/74
More information about the Secure-testing-commits
mailing list