[Secure-testing-commits] r14186 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Thu Mar 4 21:02:58 UTC 2010
Author: jmm-guest
Date: 2010-03-04 21:02:52 +0000 (Thu, 04 Mar 2010)
New Revision: 14186
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
- squid bugnums
- new xar issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-04 16:58:17 UTC (rev 14185)
+++ data/CVE/list 2010-03-04 21:02:52 UTC (rev 14186)
@@ -445,9 +445,9 @@
CVE-2010-0640 (Cross-site scripting (XSS) vulnerability in CA eHealth Performance ...)
NOT-FOR-US: CA eHealth Performance Manager
CVE-2010-0639 (The htcpHandleTstRequest function in htcp.c in Squid 2.x and 3.0 ...)
- - squid <unfixed>
+ - squid <unfixed> (bug #572553)
[lenny] - squid <no-dsa> (Minor issue, only affects non-default setup)
- - squid3 <unfixed>
+ - squid3 <unfixed> (bug #572554)
[lenny] - squid3 <no-dsa> (Minor issue, only affects non-default setup)
CVE-2010-0638 (Cross-site request forgery (CSRF) vulnerability in WebCalendar 1.2.0 ...)
- webcalendar <undetermined>
@@ -2701,8 +2701,10 @@
RESERVED
CVE-2010-0056
RESERVED
-CVE-2010-0055
+CVE-2010-0055 [xar Signature verification bypass]
RESERVED
+ - xar <unfixed> (bug filed)
+ [lenny] - xar <no-dsa> (Minor issue)
CVE-2010-0054
RESERVED
CVE-2010-0053
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2010-03-04 16:58:17 UTC (rev 14185)
+++ data/spu-candidates.txt 2010-03-04 21:02:52 UTC (rev 14186)
@@ -356,6 +356,18 @@
--
+squid (CVE-2010-0639)
+#572553
+Maintainer notified through initial bugreport
+
+--
+
+squid3 (CVE-2010-0639)
+#572554
+Maintainer notified through initial bugreport
+
+--
+
sqlite
#566326
More information about the Secure-testing-commits
mailing list