[Secure-testing-commits] r15167 - data/CVE
Giuseppe Iuculano
iuculano at alioth.debian.org
Thu Aug 19 08:08:14 UTC 2010
Author: iuculano
Date: 2010-08-19 08:08:10 +0000 (Thu, 19 Aug 2010)
New Revision: 15167
Modified:
data/CVE/list
Log:
CVE-2010-2783 fixed in openjdk-6 6b18-1.8.1-1
CVE-2010-2055 no-dsa
CVE-2010-1628 fixed in sid
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-08-19 02:40:29 UTC (rev 15166)
+++ data/CVE/list 2010-08-19 08:08:10 UTC (rev 15167)
@@ -599,6 +599,7 @@
RESERVED
CVE-2010-2783
RESERVED
+ - openjdk-6 6b18-1.8.1-1
CVE-2009-4957 (Directory traversal vulnerability in loadpanel.php in Interspire ...)
NOT-FOR-US: Interspire ActiveKB
CVE-2009-4956 (Cross-site scripting (XSS) vulnerability in the Visitor Tracking ...)
@@ -2478,6 +2479,7 @@
[lenny] - gv <no-dsa> (Minor issue)
CVE-2010-2055 (Ghostscript 8.71 and earlier reads initialization files from the ...)
- ghostscript <unfixed>
+ [lenny] - ghostscript <no-dsa> (too risky for regressions)
CVE-2010-2054 (Integer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB 1.3.4 ...)
NOT-FOR-US: SBLIM SFCB
CVE-2010-2053 (emesenelib/ProfileManager.py in emesene before 1.6.2 allows local ...)
@@ -3586,7 +3588,7 @@
CVE-2010-1629 (Cross-site scripting (XSS) vulnerability in Phorum before 5.2.15 ...)
NOT-FOR-US: Phorum
CVE-2010-1628 (Ghostscript 8.64, 8.70, and possibly other versions allows ...)
- - ghostscript <unfixed> (medium; bug #584516)
+ - ghostscript 8.71~dfsg2-4 (medium; bug #584516)
NOTE: no upstream fix available, see issue #1 in ubuntu bug report:
NOTE: https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/546009
NOTE: http://bugs.ghostscript.com/show_bug.cgi?id=691295
More information about the Secure-testing-commits
mailing list