[Secure-testing-commits] r13406 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Nov 29 21:14:18 UTC 2009
Author: joeyh
Date: 2009-11-29 21:14:18 +0000 (Sun, 29 Nov 2009)
New Revision: 13406
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-29 20:46:19 UTC (rev 13405)
+++ data/CVE/list 2009-11-29 21:14:18 UTC (rev 13406)
@@ -11,8 +11,10 @@
CVE-2009-4071 (Opera before 10.10, when exception stacktraces are enabled, places ...)
NOT-FOR-US: Opera
CVE-2009-4070 (SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly ...)
+ {DSA-1818-1}
- gforge 4.7.3-2
CVE-2009-4069 (Multiple cross-site scripting (XSS) vulnerabilities in GForge 4.5.14, ...)
+ {DSA-1818-1}
- gforge 4.7.3-2
CVE-2009-4068
RESERVED
@@ -615,6 +617,7 @@
CVE-2009-3830 (The download functionality in Team Services in Microsoft Office ...)
NOT-FOR-US: Microsoft
CVE-2009-3829 (Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows ...)
+ {DSA-1942-1}
- wireshark 1.2.2-1 (bug #553583)
CVE-2009-3828 (The web interface for Everfocus EDR1600 DVR allows remote attackers to ...)
NOT-FOR-US: Everfocus EDR1600 DVR
@@ -1377,6 +1380,7 @@
[lenny] - wireshark <not-affected> (Only affects Wireshark 1.2.x)
[etch] - wireshark <not-affected> (Only affects Wireshark 1.2.x)
CVE-2009-3550 (The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 ...)
+ {DSA-1942-1}
- wireshark 1.2.3-1 (low; bug #553583)
CVE-2009-3549 (packet-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through ...)
- wireshark 1.2.3-1 (low; bug #553583)
@@ -2159,6 +2163,7 @@
[etch] - wireshark <not-affected> (Only affects 1.2.x)
[lenny] - wireshark <not-affected> (Only affects 1.2.x)
CVE-2009-3241 (Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark ...)
+ {DSA-1942-1}
- wireshark 1.2.2-1 (low; bug #547704)
[etch] - wireshark <not-affected> (Only affects >= 0.99.6)
[lenny] - wireshark <no-dsa> (Minor issue, targeted for next point release)
@@ -4810,6 +4815,7 @@
[etch] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
[lenny] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
CVE-2009-2562 (Unspecified vulnerability in the AFS dissector in Wireshark 0.9.2 ...)
+ {DSA-1942-1}
- wireshark 1.2.1-1 (low; bug #538237)
[lenny] - wireshark <no-dsa> (Minor issue, targeted for lenny point update)
TODO: next point release: [lenny] - wireshark 1.0.2-3+lenny6
@@ -4819,6 +4825,7 @@
[etch] - wireshark <not-affected> (Only affects 1.2.0)
[lenny] - wireshark <not-affected> (Only affects 1.2.0)
CVE-2009-2560 (Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote ...)
+ {DSA-1942-1}
- wireshark 1.2.1-1 (bug #538237)
CVE-2009-2559 (Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote ...)
- wireshark 1.2.1-1 (bug #538237)
@@ -8555,7 +8562,7 @@
- wireshark 1.0.7-1 (low)
[etch] - wireshark <not-affected> (Vulnerable code not present; introduced in 0.99.6)
CVE-2009-1268 (The Check Point High-Availability Protocol (CPHAP) dissector in ...)
- {DSA-1785-1}
+ {DSA-1942-1 DSA-1785-1}
- wireshark 1.0.7-1 (low)
CVE-2009-1267 (Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 ...)
- wireshark <not-affected> (Only affects Wireshark on Windows)
@@ -23286,6 +23293,7 @@
CVE-2008-1830 (Unspecified vulnerability in the PeopleSoft HCM ePerformance component ...)
NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
CVE-2008-1829 (Unspecified vulnerability in the PeopleSoft HCM Recruiting component ...)
+ {DSA-1942-1}
NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
CVE-2008-1828 (Unspecified vulnerability in the PeopleSoft PeopleTools component in ...)
NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
More information about the Secure-testing-commits
mailing list