[Secure-testing-commits] r14453 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Apr 11 18:38:00 UTC 2010
Author: gilbert-guest
Date: 2010-04-11 18:37:58 +0000 (Sun, 11 Apr 2010)
New Revision: 14453
Modified:
data/CVE/list
Log:
png issues got a dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-04-11 17:20:14 UTC (rev 14452)
+++ data/CVE/list 2010-04-11 18:37:58 UTC (rev 14453)
@@ -3296,7 +3296,6 @@
RESERVED
CVE-2010-0205 (The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before ...)
- libpng 1.2.43-1 (low; bug #572308)
- [lenny] - libpng <no-dsa> (Minor issue)
TODO: check freeimage, tuxonice-userui
NOTE: http://www.kb.cert.org/vuls/id/576029
CVE-2010-0204
@@ -11658,7 +11657,6 @@
CVE-2009-2042 (libpng before 1.2.37 does not properly parse 1-bit interlaced images ...)
- libpng 1.2.37-1 (low; bug #533676)
[etch] - libpng <no-dsa> (Minor issue, only exploitable in rare setups)
- [lenny] - libpng <no-dsa> (Minor issue, only exploitable in rare setups)
- xulrunner <not-affected> (xulrunner dynamically linked against libpng; embeded code copy not used)
TODO: check freeimage, tuxonice-userui
CVE-2009-2041 (Cross-site scripting (XSS) vulnerability in A51 D.O.O. activeCollab ...)
More information about the Secure-testing-commits
mailing list