[Secure-testing-commits] r14708 - in data: . CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Wed May 19 04:01:50 UTC 2010
Author: gilbert-guest
Date: 2010-05-19 04:01:46 +0000 (Wed, 19 May 2010)
New Revision: 14708
Modified:
data/CVE/list
data/embedded-code-copies
Log:
new krb5 issue; dvipng texlive embed not used; xorg appears to be affected since patch has been applied to sid/squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-05-18 21:14:35 UTC (rev 14707)
+++ data/CVE/list 2010-05-19 04:01:46 UTC (rev 14708)
@@ -1559,8 +1559,10 @@
RESERVED
CVE-2010-1322
RESERVED
-CVE-2010-1321
+CVE-2010-1321 [MITKRB5-SA-2010-005]
RESERVED
+ - krb5 <unfixed>
+ NOTE: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt
CVE-2010-1320 (Double free vulnerability in do_tgs_req.c in the Key Distribution ...)
- krb5 1.8.1+dfsg-2 (bug #577490)
[lenny] - krb5 <not-affected> (Only affects 1.7/1.8)
@@ -1974,7 +1976,7 @@
CVE-2010-1168
RESERVED
CVE-2010-1166 (The fbComposite function in fbpict.c in the Render extension in the X ...)
- - xorg-server <not-affected> (Xorg in Lenny onwards uses Pixman, which isn't affected)
+ - xorg-server 2:1.7.7-1
NOTE: https://rhn.redhat.com/errata/RHSA-2010-0382.html
CVE-2010-1165 (Atlassian JIRA 3.12 through 4.1 allows remote authenticated ...)
NOT-FOR-US: Atlassian JIRA
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2010-05-18 21:14:35 UTC (rev 14707)
+++ data/embedded-code-copies 2010-05-19 04:01:46 UTC (rev 14708)
@@ -1870,7 +1870,7 @@
- dpkg 1.15.6 (static)
dvipng
- - texlive-bin <unfixed> (embed)
+ - texlive-bin <not-affected> (code present in source but not included in the binary packages)
dvipdfmx
- texlive-bin <unfixed> (embed)
More information about the Secure-testing-commits
mailing list