[Secure-testing-commits] r13866 - data/CVE
Steffen Joeris
white at alioth.debian.org
Wed Jan 20 14:59:35 UTC 2010
Author: white
Date: 2010-01-20 14:59:35 +0000 (Wed, 20 Jan 2010)
New Revision: 13866
Modified:
data/CVE/list
Log:
one gzip issue was fixed in testing/unstable, other one reported
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-01-20 14:43:28 UTC (rev 13865)
+++ data/CVE/list 2010-01-20 14:59:35 UTC (rev 13866)
@@ -1505,7 +1505,7 @@
- bash <not-affected> (mandriva-specific packaging issue)
CVE-2010-0001 [gzip: integer underflow via LZW compressed gzip archive]
RESERVED
- - gzip <unfixed> (medium)
+ - gzip <unfixed> (medium; bug #566002)
CVE-2009-4324 (Use-after-free vulnerability in the Doc.media.newPlayer method in ...)
NOT-FOR-US: Adobe Reader and Acrobat 8.0
CVE-2009-4323 (The installation for Zen Cart stores sensitive information and ...)
@@ -7051,7 +7051,7 @@
- libxerces2-java <unfixed>
CVE-2009-2624 [gzip: missing input sanitation related to dynamic Huffman codes]
RESERVED
- - gzip <unfixed> (medium)
+ - gzip 1.3.12-8 (medium; bug #507263)
CVE-2009-2623
RESERVED
CVE-2009-2620 (src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before ...)
More information about the Secure-testing-commits
mailing list