[Secure-testing-commits] r14091 - data/CVE
Giuseppe Iuculano
derevko-guest at alioth.debian.org
Sat Feb 13 09:41:27 UTC 2010
Author: derevko-guest
Date: 2010-02-13 09:41:26 +0000 (Sat, 13 Feb 2010)
New Revision: 14091
Modified:
data/CVE/list
Log:
CVE-2010-0464 and CVE-2010-0463: privacy compromise via DNS prefetching in roundcube and imp4
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-02-13 09:14:50 UTC (rev 14090)
+++ data/CVE/list 2010-02-13 09:41:26 UTC (rev 14091)
@@ -257,7 +257,6 @@
NOT-FOR-US: Xerox WorkCentre
CVE-2010-0547 (client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier ...)
- samba <unfixed> (bug #568942; medium)
- TODO: check
CVE-2010-0546
RESERVED
CVE-2010-0545
@@ -441,9 +440,9 @@
CVE-2010-0465
RESERVED
CVE-2010-0464 (Roundcube 0.3.1 and earlier does not request that the web browser ...)
- TODO: check
+ - roundcube <unfixed> (bug #569660)
CVE-2010-0463 (Horde IMP 4.3.6 and earlier does not request that the web browser ...)
- TODO: check
+ - imp4 <unfixed> (bug #569661)
CVE-2010-0462 (Heap-based buffer overflow in IBM DB2 9.7 and 9.7.1 on Linux allows ...)
NOT-FOR-US: IBM DB2
CVE-2010-0461 (SQL injection vulnerability in the casino (com_casino) component 1.0 ...)
More information about the Secure-testing-commits
mailing list