[Secure-testing-commits] r12923 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Fri Oct 2 23:23:42 UTC 2009
Author: jmm-guest
Date: 2009-10-02 23:23:42 +0000 (Fri, 02 Oct 2009)
New Revision: 12923
Modified:
data/CVE/list
Log:
more updates on point updates
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-02 23:18:07 UTC (rev 12922)
+++ data/CVE/list 2009-10-02 23:23:42 UTC (rev 12923)
@@ -111,6 +111,8 @@
- xmltooling 1.2.2-1
- opensaml <removed>
- shibboleth-sp <removed>
+ [lenny] - opensaml <no-dsa> (Minor issue)
+ TODO: next point update: [lenny] - opensaml 2.0-2+lenny1
CVE-2009-3473 (IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege ...)
NOT-FOR-US: IBM DB2
CVE-2009-3472 (IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows ...)
@@ -210,12 +212,11 @@
- libfwbuilder <unfixed> (low)
[lenny] - libfwbuilder <not-affected> (Introduced in 3.0.4)
[etch] - libfwbuilder <not-affected> (Introduced in 3.0.4)
-CVE-2009-XXXX [Correctly honor the "use" attribute of <KeyDescriptor> SAML metadata]
- - opensaml <unfixed>
- [lenny] - opensaml <no-dsa> (Minor issue)
- TODO: next point update: [lenny] - opensaml 2.0-2+lenny1
CVE-2009-XXXX [RT: XSS security problem in custom field display]
- request-tracker3.8 3.8.5-1 (bug #546829)
+ - request-tracker3.6 3.6.9-1
+ [lenny] - request-tracker3.6 <no-dsa> (Minor issue)
+ TODO: next point update: [lenny] - request-tracker3.6 3.6.7-5+lenny2
CVE-2009-3430 (SQL injection vulnerability in login.php in Allomani Mobile 2.5 allows ...)
NOT-FOR-US: Allomani Mobile
CVE-2009-3429 (Stack-based buffer overflow in Pirate Radio Destiny Media Player 1.61 ...)
More information about the Secure-testing-commits
mailing list