[Secure-testing-commits] r15186 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sun Aug 22 21:15:04 UTC 2010
Author: joeyh
Date: 2010-08-22 21:14:59 +0000 (Sun, 22 Aug 2010)
New Revision: 15186
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-08-22 21:12:52 UTC (rev 15185)
+++ data/CVE/list 2010-08-22 21:14:59 UTC (rev 15186)
@@ -1,4 +1,5 @@
CVE-2010-3065 [php MOPS 60]
+ {DSA-2089-1}
- php5 <unfixed>
CVE-2010-3057
RESERVED
@@ -598,7 +599,7 @@
RESERVED
CVE-2010-2809 (The default configuration of the <Button2> binding in Uzbl before ...)
- uzbl <unfixed>
- TODO: File bug
+ TODO: File bug
CVE-2010-2808 (Buffer overflow in the Mac_Read_POST_Resource function in ...)
- freetype 2.4.2-1
CVE-2010-2807 (FreeType before 2.4.2 uses incorrect integer data types during bounds ...)
@@ -6749,7 +6750,7 @@
CVE-2010-0628 (The spnego_gss_accept_sec_context function in ...)
- krb5 1.8+dfsg-1.1 (bug #575740)
[lenny] - krb5 <not-affected> (Only affects 1.7/1.8)
-CVE-2010-2234 [CouchDB: browser interface has XSS, CSRF issues]
+CVE-2010-2234 (Cross-site request forgery (CSRF) vulnerability in Apache CouchDB ...)
- couchdb <unfixed> (bug #570013)
[lenny] - couchdb <no-dsa> (does not support authentication at all)
CVE-2010-0637 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
More information about the Secure-testing-commits
mailing list