[Secure-testing-commits] r14522 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sun Apr 18 21:15:09 UTC 2010 

Author: joeyh
Date: 2010-04-18 21:14:54 +0000 (Sun, 18 Apr 2010)
New Revision: 14522

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-18 16:55:52 UTC (rev 14521)
+++ data/CVE/list	2010-04-18 21:14:54 UTC (rev 14522)
@@ -702,6 +702,7 @@
 CVE-2010-1164
 	RESERVED
 CVE-2010-1163 [another sudoedit issue]
+	RESERVED
 	- sudo <unfixed> (bug #578275)
 	[lenny] - sudo <not-affected> (ignore_dot default value is off and can't be changed in runtime)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=580441#c3
@@ -2869,6 +2870,7 @@
 CVE-2010-0424 (The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) ...)
 	- cron <not-affected> (vulnerability in redhat-specific changes to their cron forks; cronie and vixie-cron)
 CVE-2010-0423 (gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a ...)
+	{DSA-2038-1}
 	- pidgin 2.6.6-1 (low)
 	- gaim <removed> (low)
 	[lenny] - gaim <not-affected> (gaim is a transitional dummy package only)
@@ -2880,6 +2882,7 @@
 	{DSA-2019-1}
 	- pango1.0 1.26.2-1 (bug #574021) 
 CVE-2010-0420 (libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user ...)
+	{DSA-2038-1}
 	- pidgin 2.6.6-1 (low)
 	- gaim <removed> (low)
 	[lenny] - gaim <not-affected> (gaim is a transitional dummy package only)
@@ -3431,6 +3434,7 @@
 CVE-2009-4595 (SQL injection vulnerability in index.php in PHP Inventory 1.2 allows ...)
 	NOT-FOR-US: PHP Inventory
 CVE-2010-0277 (slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, ...)
+	{DSA-2038-1}
 	- pidgin 2.6.6-1 (low; bug #566775)
 	- gaim <removed> (low)
 	[lenny] - gaim <not-affected> (gaim is a transitional dummy package only)
@@ -8466,9 +8470,11 @@
 	- pidgin 2.6.2-1 (low)
 	[lenny] - pidgin <no-dsa> (Minor issue)
 CVE-2009-3084 (The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c ...)
+	{DSA-2038-1}
 	- pidgin 2.6.2-1 (low)
 	[lenny] - pidgin <no-dsa> (Minor issue)
 CVE-2009-3083 (The msn_slp_sip_recv function in libpurple/protocols/msn/slp.c in the ...)
+	{DSA-2038-1}
 	- pidgin 2.6.2-1 (low)
 	[lenny] - pidgin <no-dsa> (Minor issue)
 CVE-2008-7185 (GNOME Rhythmbox 0.11.5 allows remote attackers to cause a denial of ...)

More information about the Secure-testing-commits mailing list