[Secure-testing-commits] r13389 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Thu Nov 26 21:14:23 UTC 2009
Author: joeyh
Date: 2009-11-26 21:14:23 +0000 (Thu, 26 Nov 2009)
New Revision: 13389
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-26 20:30:12 UTC (rev 13388)
+++ data/CVE/list 2009-11-26 21:14:23 UTC (rev 13389)
@@ -59,6 +59,7 @@
NOTE: low or maybe even unimportant as one requires admin access
NOTE: to cacti
CVE-2009-4032 [Cacti Multiple Script Insertion Vulnerabilities]
+ RESERVED
- cacti <unfixed>
TODO: check
NOTE: http://docs.cacti.net/#cross-site_scripting_fixes
@@ -263,6 +264,7 @@
[etch] - dovecot <not-affected> (Only affects 1.2.x)
NOTE: http://www.dovecot.org/list/dovecot-news/2009-November/000143.html, CVE requested on oss-sec
CVE-2009-4017 (PHP 5.2.11, and 5.3.x before 5.3.1, does not restrict the number of ...)
+ {DSA-1940-1}
- php5 5.2.11.dfsg.1-2 (medium)
- php4 <unfixed> (medium)
NOTE: workarounds include using 5.3.1 or php5-suhosin
More information about the Secure-testing-commits
mailing list