[Secure-testing-commits] r14828 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Mon Jun 7 22:57:36 UTC 2010
Author: jmm-guest
Date: 2010-06-07 22:57:20 +0000 (Mon, 07 Jun 2010)
New Revision: 14828
Modified:
data/CVE/list
data/embedded-code-copies
data/spu-candidates.txt
Log:
openssl spu fix
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-06-07 21:15:01 UTC (rev 14827)
+++ data/CVE/list 2010-06-07 22:57:20 UTC (rev 14828)
@@ -9741,6 +9741,7 @@
CVE-2009-3245 (OpenSSL before 0.9.8m does not check for a NULL return value from ...)
- openssl 0.9.8m-1 (low; bug #575433)
[lenny] - openssl <no-dsa> (minor issue)
+ TODO: next point update: [lenny] - openssl 0.9.8g-15+lenny7
CVE-2009-3244 (Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe ...)
NOT-FOR-US: Adobe ShockWave Player
CVE-2009-3243 (Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and ...)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2010-06-07 21:15:01 UTC (rev 14827)
+++ data/embedded-code-copies 2010-06-07 22:57:20 UTC (rev 14828)
@@ -200,8 +200,10 @@
lesstif (beware: two different lesstif APIs supported in one package, MOTIF 1.2 discarded upstream)
- openmotif <unfixed> (embed)
- - libxpm <unfixed> (embed; bug #575750)
+libxpm
+ - lesstif <unfixed> (embed; bug #575750)
+
kerberized apps with BSD origin
- krb4 <removed> (embed)
- krb5 <unfixed> (embed)
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2010-06-07 21:15:01 UTC (rev 14827)
+++ data/spu-candidates.txt 2010-06-07 22:57:20 UTC (rev 14828)
@@ -361,11 +361,6 @@
--
-openssl (CVE-2009-3245)
-notified maintainer
-
---
-
overkill (no CVE yet)
#549310
More information about the Secure-testing-commits
mailing list