[Secure-testing-commits] r13135 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Thu Oct 29 00:43:22 UTC 2009
Author: geissert
Date: 2009-10-29 00:43:21 +0000 (Thu, 29 Oct 2009)
New Revision: 13135
Modified:
data/CVE/list
Log:
libhtml-parser-perl fixed in unstable
marking sahana as itp (although it is a rfp, this should be discussed)
vnc issue in qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-29 00:30:26 UTC (rev 13134)
+++ data/CVE/list 2009-10-29 00:43:21 UTC (rev 13135)
@@ -466,7 +466,7 @@
- typo3-src 4.2.10-1 (medium; bug #552020)
CVE-2009-3627 ["decode_entities()" Denial of Service]
RESERVED
- - libhtml-parser-perl <unfixed> (bug #552531)
+ - libhtml-parser-perl 3.64-1 (bug #552531)
NOTE: http://secunia.com/advisories/37155/
CVE-2009-3626 [perl utf8 DoS]
RESERVED
@@ -474,7 +474,7 @@
[lenny] - perl <not-affected> (Vulnerable code not present)
[etch] - perl <not-affected> (Vulnerable code not present)
CVE-2009-3625 (Directory traversal vulnerability in www/index.php in Sahana 0.6.2.2 ...)
- TODO: check
+ - sahana <itp> (bug #497414)
CVE-2009-3624 [linux-2.6: keyring issue]
RESERVED
- linux-2.6 <unfixed> (low)
@@ -507,6 +507,7 @@
CVE-2009-3617 (Format string vulnerability in the AbstractCommand::onAbort function ...)
- aria2 1.6.2-1 (low)
CVE-2009-3616 (Multiple use-after-free vulnerabilities in vnc.c in the VNC server in ...)
+ - qemu <unfixed>
TODO: check
CVE-2009-3615 (The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and ...)
- pidgin 2.6.3-1
More information about the Secure-testing-commits
mailing list