[Secure-testing-commits] r13094 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Oct 25 21:14:24 UTC 2009
Author: joeyh
Date: 2009-10-25 21:14:24 +0000 (Sun, 25 Oct 2009)
New Revision: 13094
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-25 20:54:39 UTC (rev 13093)
+++ data/CVE/list 2009-10-25 21:14:24 UTC (rev 13094)
@@ -133,9 +133,11 @@
CVE-2009-3698 (An unspecified function in the Dalvik API in Android 1.5 and earlier ...)
NOT-FOR-US: Dalvik API in Android
CVE-2009-3697 (SQL injection vulnerability in the PDF schema generator functionality ...)
+ {DSA-1918-1}
- phpmyadmin 4:3.2.2.1-1
[etch] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2009-3696 (Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.11.x before ...)
+ {DSA-1918-1}
- phpmyadmin 4:3.2.2.1-1
CVE-2009-3610
RESERVED
@@ -6218,6 +6220,7 @@
CVE-2009-1670 (user/index.php in TCPDB 3.8 does not require administrative ...)
NOT-FOR-US: TCPDB
CVE-2009-1669 (The smarty_function_math function in libs/plugins/function.math.php in ...)
+ {DSA-1919-1}
- smarty <unfixed> (low; bug #529810)
[etch] - smarty <not-affected> (Vulnerable code not present)
[lenny] - smarty <no-dsa> (Minor issue)
@@ -15083,7 +15086,7 @@
NOTE: This attack vector is *not* fixed in r2797
NOTE: NMU of Smarty 2.6.26-0.1 fixing this, uploaded to delayed/10
CVE-2008-4810 (The _expand_quoted_text function in libs/Smarty_Compiler.class.php in ...)
- {DSA-1691-1}
+ {DSA-1919-1 DSA-1691-1}
- smarty <unfixed> (bug #504328)
- moodle 1.8.2-2 (bug #504345)
[etch] - gallery2 <unfixed>
More information about the Secure-testing-commits
mailing list