[Secure-testing-commits] r14837 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Wed Jun 9 21:23:22 UTC 2010
Author: jmm-guest
Date: 2010-06-09 21:23:22 +0000 (Wed, 09 Jun 2010)
New Revision: 14837
Modified:
data/CVE/list
Log:
beanstalk fixed
cairo doesn't need to be fixed in Lenny
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-06-09 21:14:17 UTC (rev 14836)
+++ data/CVE/list 2010-06-09 21:23:22 UTC (rev 14837)
@@ -381,7 +381,7 @@
CVE-2010-2061
RESERVED
CVE-2010-2060 (The put command functionality in beanstalkd 1.4.5 and earlier allows ...)
- - beanstalkd <unfixed> (bug #585162)
+ - beanstalkd 1.4.6-1 (unimportant; bug #585162)
NOTE: Package description reads: "Beanstalkd is meant to be ran in a trusted network,
NOTE: "as it has no authorisation/authentication mechanisms". So this is likely a non-issue
CVE-2010-2059 (lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and ...)
@@ -14009,8 +14009,9 @@
NOT-FOR-US: Cisco
CVE-2009-2044 (Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to ...)
- xulrunner <not-affected> (uses external cairo library)
- - cairo 1.8.8-2
+ - cairo 1.8.8-2 (unimportant)
NOTE: http://cgit.freedesktop.org/cairo/commit/?id=2cf82eaf0d08e68b787bb0792da97e73d8d4ce38
+ NOTE: Just a crasher
CVE-2009-2043 (nsViewManager.cpp in Mozilla Firefox 3.0.2 through 3.0.10 allows ...)
- xulrunner <unfixed> (unimportant)
NOTE: Browser crashes not treated as security issues
More information about the Secure-testing-commits
mailing list