[Secure-testing-commits] r13994 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Tue Feb 2 04:47:01 UTC 2010
Author: geissert
Date: 2010-02-02 04:46:59 +0000 (Tue, 02 Feb 2010)
New Revision: 13994
Modified:
data/CVE/list
Log:
two bugzilla, one moin, one squid issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-02-02 01:20:12 UTC (rev 13993)
+++ data/CVE/list 2010-02-02 04:46:59 UTC (rev 13994)
@@ -1,3 +1,13 @@
+CVE-2010-XXXX [Squid DoS when processing DNS packets]
+ - squid <unfixed>
+ - squid3 <unfixed>
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
+ TODO: check
+CVE-2010-XXXX [moinmoin unspecified issue]
+ - moin <unfixed>
+ NOTE: http://moinmo.in/SecurityFixes
+ NOTE: "you can avoid the issue by not having any user names in your superuser list"
+ TODO: check
CVE-2010-0466
RESERVED
CVE-2010-0465
@@ -2697,8 +2707,10 @@
RESERVED
CVE-2009-3990
RESERVED
-CVE-2009-3989
+CVE-2009-3989 [bugzilla possible information leak]
RESERVED
+ - bugzilla <unfixed> (unimportant)
+ NOTE: http://www.bugzilla.org/security/3.0.10/
CVE-2009-3988
RESERVED
CVE-2009-3987 (The GeckoActiveXObject function in Mozilla Firefox before 3.0.16 and ...)
@@ -4474,8 +4486,11 @@
- liboggplay <unfixed>
- xulrunner 1.9.1.6-1
[lenny] - xulrunner <not-affected> (Video playback capabilities were added in 3.5)
-CVE-2009-3387
+CVE-2009-3387 [bugzilla possible information leak]
RESERVED
+ - bugzilla <undetermined> (low)
+ NOTE: probably unimportant
+ TODO: check
CVE-2009-3386 (Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1 ...)
- bugzilla <not-affected> (Only 3.3 onwards are affected)
TODO: recheck, once a more recent (3.3.x or 3.4.x) version has been uploaded
More information about the Secure-testing-commits
mailing list