[Secure-testing-commits] r15632 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Wed Dec 1 04:05:27 UTC 2010
Author: gilbert-guest
Date: 2010-12-01 04:05:25 +0000 (Wed, 01 Dec 2010)
New Revision: 15632
Modified:
data/CVE/list
Log:
new kerberos advisory
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-11-30 21:17:09 UTC (rev 15631)
+++ data/CVE/list 2010-12-01 04:05:25 UTC (rev 15632)
@@ -750,10 +750,12 @@
NOT-FOR-US: HP Insight Control Power Management
CVE-2010-4022
RESERVED
-CVE-2010-4021
+CVE-2010-4021 [krb5 checksum handling]
RESERVED
-CVE-2010-4020
+ - krb5 <unfixed> (bug #605553)
+CVE-2010-4020 [krb5 checksum handling]
RESERVED
+ - krb5 <unfixed> (bug #605553)
CVE-2010-4019
RESERVED
CVE-2010-4018
@@ -8085,10 +8087,12 @@
NOTE: http://march-hare.com/cvspro/vuln.htm
CVE-2010-1325 (Cross-site request forgery (CSRF) vulnerability in the apache2-slms ...)
NOT-FOR-US: SUSE Lifecycle Management Server
-CVE-2010-1324
+CVE-2010-1324 [krb5 checksum handling]
RESERVED
-CVE-2010-1323
+ - krb5 <unfixed> (bug #605553)
+CVE-2010-1323 [krb5 checksum handling]
RESERVED
+ - krb5 <unfixed> (bug #605553)
CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key Distribution ...)
- krb5 1.8.3+dfsg-2 (bug #599237)
[lenny] - krb5 <not-affected> (Only affects 1.8)
More information about the Secure-testing-commits
mailing list