[Secure-testing-commits] r14173 - data/CVE

Stefan Fritsch sf at alioth.debian.org
Tue Mar 2 19:09:57 UTC 2010


Author: sf
Date: 2010-03-02 19:09:53 +0000 (Tue, 02 Mar 2010)
New Revision: 14173

Modified:
   data/CVE/list
Log:
new apache issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-03-02 14:15:58 UTC (rev 14172)
+++ data/CVE/list	2010-03-02 19:09:53 UTC (rev 14173)
@@ -881,8 +881,9 @@
 CVE-2010-0426 (sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a ...)
 	- sudo 1.7.2p1-1.1 (bug #570737)
 	NOTE: http://www.openwall.com/lists/oss-security/2010/02/23/4
-CVE-2010-0425
+CVE-2010-0425 [apache mod_isapi DoS]
 	RESERVED
+	- apache2 <not-affected> (Windows only)
 CVE-2010-0424 (The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) ...)
 	TODO: check
 CVE-2010-0423 (gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a ...)
@@ -927,8 +928,11 @@
 CVE-2010-0409 (Buffer overflow in the GMIME_UUENCODE_LEN macro in ...)
 	- gmime2.2 <unfixed> (bug #568291)
 	- gmime2.4 <unfixed> (bug #568291)
-CVE-2010-0408
+CVE-2010-0408 [apache2 mod_proxy_ajp DoS]
 	RESERVED
+	- apache2 <unfixed> (low)
+	[lenny] - apache2 <no-dsa> (minor issue)
+	NOTE: Will be fixed in s-p-u
 CVE-2010-0407
 	RESERVED
 CVE-2010-0406




More information about the Secure-testing-commits mailing list