[Secure-testing-commits] r13406 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sun Nov 29 21:14:18 UTC 2009


Author: joeyh
Date: 2009-11-29 21:14:18 +0000 (Sun, 29 Nov 2009)
New Revision: 13406

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-11-29 20:46:19 UTC (rev 13405)
+++ data/CVE/list	2009-11-29 21:14:18 UTC (rev 13406)
@@ -11,8 +11,10 @@
 CVE-2009-4071 (Opera before 10.10, when exception stacktraces are enabled, places ...)
 	NOT-FOR-US: Opera
 CVE-2009-4070 (SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly ...)
+	{DSA-1818-1}
 	- gforge 4.7.3-2
 CVE-2009-4069 (Multiple cross-site scripting (XSS) vulnerabilities in GForge 4.5.14, ...)
+	{DSA-1818-1}
 	- gforge 4.7.3-2
 CVE-2009-4068
 	RESERVED
@@ -615,6 +617,7 @@
 CVE-2009-3830 (The download functionality in Team Services in Microsoft Office ...)
 	NOT-FOR-US: Microsoft
 CVE-2009-3829 (Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows ...)
+	{DSA-1942-1}
 	- wireshark 1.2.2-1 (bug #553583)
 CVE-2009-3828 (The web interface for Everfocus EDR1600 DVR allows remote attackers to ...)
 	NOT-FOR-US: Everfocus EDR1600 DVR
@@ -1377,6 +1380,7 @@
 	[lenny] - wireshark <not-affected> (Only affects Wireshark 1.2.x)
 	[etch] - wireshark <not-affected> (Only affects Wireshark 1.2.x)
 CVE-2009-3550 (The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 ...)
+	{DSA-1942-1}
 	- wireshark 1.2.3-1 (low; bug #553583)
 CVE-2009-3549 (packet-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through ...)
 	- wireshark 1.2.3-1 (low; bug #553583)
@@ -2159,6 +2163,7 @@
 	[etch] - wireshark <not-affected> (Only affects 1.2.x)
 	[lenny] - wireshark <not-affected> (Only affects 1.2.x)
 CVE-2009-3241 (Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark ...)
+	{DSA-1942-1}
 	- wireshark 1.2.2-1 (low; bug #547704)
 	[etch] - wireshark <not-affected> (Only affects >= 0.99.6)
 	[lenny] - wireshark <no-dsa> (Minor issue, targeted for next point release)
@@ -4810,6 +4815,7 @@
 	[etch] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
 	[lenny] - wireshark <not-affected> (Only affects 1.0.6 to 1.2.0)
 CVE-2009-2562 (Unspecified vulnerability in the AFS dissector in Wireshark 0.9.2 ...)
+	{DSA-1942-1}
 	- wireshark 1.2.1-1 (low; bug #538237)
 	[lenny] - wireshark <no-dsa> (Minor issue, targeted for lenny point update)
 	TODO: next point release: [lenny] - wireshark 1.0.2-3+lenny6
@@ -4819,6 +4825,7 @@
 	[etch] - wireshark <not-affected> (Only affects 1.2.0)
 	[lenny] - wireshark <not-affected> (Only affects 1.2.0)
 CVE-2009-2560 (Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote ...)
+	{DSA-1942-1}
 	- wireshark 1.2.1-1 (bug #538237)
 CVE-2009-2559 (Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote ...)
 	- wireshark 1.2.1-1 (bug #538237)
@@ -8555,7 +8562,7 @@
 	- wireshark 1.0.7-1 (low)
 	[etch] - wireshark <not-affected> (Vulnerable code not present; introduced in 0.99.6)
 CVE-2009-1268 (The Check Point High-Availability Protocol (CPHAP) dissector in ...)
-	{DSA-1785-1}
+	{DSA-1942-1 DSA-1785-1}
 	- wireshark 1.0.7-1 (low)
 CVE-2009-1267 (Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 ...)
 	- wireshark <not-affected> (Only affects Wireshark on Windows)
@@ -23286,6 +23293,7 @@
 CVE-2008-1830 (Unspecified vulnerability in the PeopleSoft HCM ePerformance component ...)
 	NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
 CVE-2008-1829 (Unspecified vulnerability in the PeopleSoft HCM Recruiting component ...)
+	{DSA-1942-1}
 	NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
 CVE-2008-1828 (Unspecified vulnerability in the PeopleSoft PeopleTools component in ...)
 	NOT-FOR-US: Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne




More information about the Secure-testing-commits mailing list