[Secure-testing-commits] r15093 - in data: . CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Sun Aug 1 17:31:29 UTC 2010 

Author: jmm-guest
Date: 2010-08-01 17:31:27 +0000 (Sun, 01 Aug 2010)
New Revision: 15093

Modified:
   data/CVE/list
   data/package-tags
Log:
kfreebsd, mydms no-dsa
tuxoneice unimportant
limit support for glpi, discussed with maintainer some time ago,
  but apparently never commited to package-tags



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-08-01 15:44:00 UTC (rev 15092)
+++ data/CVE/list	2010-08-01 17:31:27 UTC (rev 15093)
@@ -570,6 +570,7 @@
 	NOT-FOR-US: Joomla addon
 CVE-2010-2693 (FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag ...)
 	- kfreebsd-7 7.3-5
+	[lenny] - kfreebsd-7 <no-dsa> (Not covered by security support in Lenny)
 	- kfreebsd-8 8.0-10
 CVE-2010-2692 (Cross-site scripting (XSS) vulnerability in 2daybiz Custom T-Shirt ...)
 	NOT-FOR-US: 2daybiz Custom T-Shirt Design Script
@@ -2305,7 +2306,8 @@
 	- mysql-5.1 5.1.48-1
 	- mysql-dfsg-5.0 <removed>
 CVE-2010-2007 (Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS ...)
-	- mydms <unfixed> (bug #590904; medium)
+	- mydms <unfixed> (bug #590904; low)
+	[lenny] - mydms <no-dsa> (Minor issue)
 	NOTE: seems to have changed name to letoDMS
 CVE-2010-2006 (Directory traversal vulnerability in op/op.Login.php in LetoDMS ...)
 	- mydms 1.7.2+1.7.3-1.1 (bug #582587; medium)
@@ -4639,7 +4641,7 @@
 CVE-2010-1205 (Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before ...)
 	{DSA-2075-1 DSA-2072-1}
 	- libpng 1.2.44-1 (bug #587670)
-	- tuxonice-userui 1.0-1 
+	- tuxonice-userui 1.0-1 (unimportant)
 	NOTE: tuxonice-userui 1.0-1 was binNMUed
 CVE-2010-1204 (Search.pm in Bugzilla 2.17.1 through 3.2.6, 3.3.1 through 3.4.6, 3.5.1 ...)
 	- bugzilla 3.4.7.0-1 (low; bug #587663)

Modified: data/package-tags
===================================================================
--- data/package-tags	2010-08-01 15:44:00 UTC (rev 15092)
+++ data/package-tags	2010-08-01 17:31:27 UTC (rev 15093)
@@ -44,3 +44,9 @@
 [etch] acidbase <limited-support> (Only supported behind an authenticated HTTP zone for trusted users)
 [lenny] acidbase <limited-support> (Only supported behind an authenticated HTTP zone for trusted users)
 [squeeze] acidbase <limited-support> (Only supported behind an authenticated HTTP zone for trusted users)
+
+[lenny] glpi <limited-support> (Only supported behind an authenticated HTTP zone for trusted users)
+[squeeze] glpi <limited-support> (Only supported behind an authenticated HTTP zone for trusted users)
+
+
+

More information about the Secure-testing-commits mailing list