[Secure-testing-commits] r14090 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sat Feb 13 09:15:09 UTC 2010 

Author: joeyh
Date: 2010-02-13 09:14:50 +0000 (Sat, 13 Feb 2010)
New Revision: 14090

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-02-13 06:39:53 UTC (rev 14089)
+++ data/CVE/list	2010-02-13 09:14:50 UTC (rev 14090)
@@ -477,6 +477,7 @@
 CVE-2010-0447
 	RESERVED
 CVE-2010-0446
+	RESERVED
 	NOT-FOR-US: HP DreamScreen
 CVE-2010-0445 (Unspecified vulnerability in HP Network Node Manager (NNM) 8.10, 8.11, ...)
 	NOT-FOR-US: HP Network Node Manager
@@ -544,6 +545,7 @@
 	RESERVED
 CVE-2010-0415 [info leak in sys move pages]
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-8
 	- linux-2.6.24 <removed>
 CVE-2010-0414 (gnome-screensaver before 2.28.2 allows physically proximate attackers ...)
@@ -561,6 +563,7 @@
 	NOTE: http://sourceware.org/bugzilla/show_bug.cgi?id=11234 and RH
 CVE-2010-0410 [kernel OOM via NETLINK_CONNECTOR]
 	RESERVED
+	{DSA-1996-1}
 	- linux2.6 2.6.32-8 
 	- linux-2.6.24 <removed>
 	NOTE: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f98bfbd78c37c5946cc53089da32a5f741efdeb7
@@ -928,6 +931,7 @@
 	NOTE: http://seclists.org/fulldisclosure/2010/Jan/296
 CVE-2010-0309 [linux kvm pit_ioport_read() DoS]
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-8 
 	[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
 	- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
@@ -940,10 +944,12 @@
 	NOTE: http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
 CVE-2010-0307 [denial-of-service on amd64]
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-8
 	- linux-2.6.24 <removed>
 CVE-2010-0306 [kvm privilege escalation]
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-8
 	[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
 	- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
@@ -971,6 +977,7 @@
 	- linux-2.6.24 <removed>
 CVE-2010-0298 [kvm privilege escalation]
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-8
 	[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
 	- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
@@ -995,6 +1002,7 @@
 	- chrony 1.23-7 (medium)
 CVE-2010-0291
 	RESERVED
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6
 CVE-2010-0290 (Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before ...)
 	- bind9 <unfixed>
@@ -1568,6 +1576,7 @@
 CVE-2010-0096
 	RESERVED
 CVE-2009-4538 (drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel ...)
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6 (low; bug #564114)
 	- linux-2.6.24 <removed> (low)
 	NOTE: just like CVE-2009-4536 but was reported later
@@ -1575,6 +1584,7 @@
 	- linux-2.6 <unfixed> (medium; bug #564110)
 	- linux-2.6.24 <removed> (medium)
 CVE-2009-4536 (drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel ...)
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6 (low; bug #564114)
 	- linux-2.6.24 <removed> (low)
 CVE-2009-4535 (Mongoose 2.8.0 and earlier allows remote attackers to obtain the ...)
@@ -2284,6 +2294,7 @@
 CVE-2010-0008
 	RESERVED
 CVE-2010-0007 (net/bridge/netfilter/ebtables.c in the ebtables module in the ...)
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6
 	- linux-2.6.24 <removed>
 CVE-2010-0006 (The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel ...)
@@ -2298,6 +2309,7 @@
 	- viewvc <unfixed>
 	TODO: check
 CVE-2010-0003 (The print_fatal_signal function in kernel/signal.c in the Linux kernel ...)
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6
 	- linux-2.6.24 <removed>
 CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...)
@@ -3070,7 +3082,7 @@
 	- mysql-dfsg-5.0 <not-affected> (Vulnerable code not present)
 	NOTE: built with --without-openssl
 CVE-2009-4027 (Race condition in the mac80211 subsystem in the Linux kernel before ...)
-	{DTSA-204-1}
+	{DSA-1996-1 DTSA-204-1}
 	- linux-2.6 2.6.32-1 (medium)
 	[etch] - linux-2.6 <not-affected> (introduced in 2.6.26)
 	- linux-2.6.24 <not-affected> (introduced in 2.6.26)
@@ -3335,6 +3347,7 @@
 CVE-2009-3940 (Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox ...)
 	- virtualbox-guest-additions 3.0.10-1
 CVE-2009-3939 (The poll_mode_io file for the megaraid_sas driver in the Linux kernel ...)
+	{DSA-1996-1}
 	- linux-2.6 2.6.32-6 (low)
 	[etch] - linux-2.6 <not-affected> (Vulnerable code not present)
 	- linux-2.6.24 <removed> (low)

More information about the Secure-testing-commits mailing list