[Secure-testing-commits] r15507 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Sat Oct 23 12:33:05 UTC 2010
Author: jmm-guest
Date: 2010-10-23 12:32:58 +0000 (Sat, 23 Oct 2010)
New Revision: 15507
Modified:
data/CVE/list
Log:
- new proftpd issue
- php5 fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-10-23 12:29:23 UTC (rev 15506)
+++ data/CVE/list 2010-10-23 12:32:58 UTC (rev 15507)
@@ -1,4 +1,7 @@
CVE-2010-XXXX
+ - proftpd-dfsg 1.3.3a-4
+ [lenny] - proftpd-dfsg <no-dsa> (Minor issue)
+CVE-2010-XXXX
- fusionforge 5.0.2-3
CVE-2010-XXXX
- flash-kernel 2.33 (low)
@@ -2521,8 +2524,7 @@
NOT-FOR-US: Tivoli
CVE-2010-3065 (The default session serializer in PHP 5.2 through 5.2.13 and 5.3 ...)
{DSA-2089-1}
- - php5 <unfixed>
- NOTE: Fixed in experimental: version 5.3.3-1
+ - php5 5.3.3-1
CVE-2010-3057
RESERVED
CVE-2010-3054 (Unspecified vulnerability in FreeType 2.3.9, and other versions before ...)
@@ -2767,7 +2769,7 @@
[lenny] - squid3 <not-affected> (vulnerable code introduced in 3.1.6)
NOTE: http://marc.info/?l=squid-users&m=128263555724981&w=2
CVE-2010-2950 (Format string vulnerability in stream.c in the phar extension in PHP ...)
- - php5 <unfixed> (low)
+ - php5 5.3.3-2 (low)
[lenny] - php5 <not-affected> (phar extension introduced in 5.3)
CVE-2010-2947 (Heap-based buffer overflow in the HX_split function in string.c in ...)
- libhx 3.5-2 (low; bug #594393)
@@ -3913,7 +3915,7 @@
CVE-2010-2532 (** DISPUTED ** ...)
- lxsession 0.4.4-3 (bug #591409)
CVE-2010-2531 (The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 ...)
- - php5 <unfixed> (low)
+ - php5 5.3.3-2 (low)
CVE-2010-2530 (Multiple integer signedness errors in smb_subr.c in the netsmb module ...)
NOT-FOR-US: NetBSD
CVE-2010-2529 (Unspecified vulnerability in ping.c in iputils 20020927, 20070202, ...)
More information about the Secure-testing-commits
mailing list