[Secure-testing-commits] r14020 - data/CVE

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2010-02-03 18:42:54 +0000 (Wed, 03 Feb 2010)
New Revision: 14020

Modified:
   data/CVE/list
Log:
gmime CVEfied
no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-02-03 18:39:30 UTC (rev 14019)
+++ data/CVE/list	2010-02-03 18:42:54 UTC (rev 14020)
@@ -1,6 +1,3 @@
-CVE-2010-XXXX [gmime: possible buffer overflows]
-	- gmime2.2 <unfixed> (bug #568291)
-	NOTE: CVE id requested by RedHat on oss-sec
 CVE-2010-XXXX [ejabberd DoS via "c2s" messages]
 	- ejabberd <unfixed>
 	NOTE: https://support.process-one.net/browse/EJAB-1173
@@ -125,8 +122,9 @@
 	RESERVED
 CVE-2010-0410
 	RESERVED
-CVE-2010-0409
+CVE-2010-0409 [gmime: possible buffer overflows]
 	RESERVED
+	- gmime2.2 <unfixed> (bug #568291)
 CVE-2010-0408
 	RESERVED
 CVE-2010-0407
@@ -3436,6 +3434,8 @@
 	[lenny] - libextractor <no-dsa> (Minor issue)
 	- libmcrypt <not-affected> (not included in any of the binary packages; bug #559820)
 	- libtunepimp <unfixed> (low; bug #559821)
+	[lenny] - libtunepimp <no-dsa> (Minor issue)
+	[etch] - libtunepimp <no-dsa> (Minor issue)
 	- mp4h <unfixed> (low; bug #559822)
 	[etch] - mp4h <no-dsa> (Minor issue)
 	[lenny] - mp4h <no-dsa> (Minor issue)