[Secure-testing-commits] r15386 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Sep 29 06:41:13 UTC 2010 

Author: jmm-guest
Date: 2010-09-29 06:41:11 +0000 (Wed, 29 Sep 2010)
New Revision: 15386

Modified:
   data/CVE/list
Log:
- CVE assignments
- paxtest fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-09-28 21:24:52 UTC (rev 15385)
+++ data/CVE/list	2010-09-29 06:41:11 UTC (rev 15386)
@@ -363,12 +363,19 @@
 	RESERVED
 CVE-2010-3441
 	RESERVED
-CVE-2010-3440
+	- abcm2ps 5.9.13-0.1 (low; bug #577014)
+	[lenny] - abcm2ps <no-dsa> (Minor issue)
+CVE-2010-3440 [babiloo insecure downloading and unpacking of dictionary files]
 	RESERVED
-CVE-2010-3439
+	- babiloo <unfixed> (low; bug #591995)
+CVE-2010-3439 [alien-arena: server dos]
 	RESERVED
-CVE-2010-3438
+	- alien-arena 7.33-5 (low; bug #575621)
+	[lenny] - alien-arena 7.0-1+lenny2
+CVE-2010-3438 [Insufficient stripping of CR/LF allows arbitrary IRC command execution]
 	RESERVED
+	- libpoe-component-irc-perl 6.32+dfsg-1
+	[lenny] - libpoe-component-irc-perl 6.32+dfsg-1 (bug #581194)
 CVE-2010-3437
 	RESERVED
 CVE-2010-3436
@@ -567,8 +574,7 @@
 	- qtcreator <unfixed> (bug #598300)
 CVE-2010-3373
 	RESERVED
-	- paxtest <unfixed> (unimportant; bug #598413)
-	[lenny] - paxtest <no-dsa> (minor issue)
+	- paxtest 1:0.9.9-1 (unimportant; bug #598413)
 CVE-2010-3372
 	RESERVED
 CVE-2010-3371
@@ -1424,8 +1430,6 @@
 	- php5 <unfixed>
 CVE-2010-3057
 	RESERVED
-CVE-2010-XXXX [babiloo insecure downloading and unpacking of dictionary files]
-	- babiloo <unfixed> (low; bug #591995)
 CVE-2010-3054 (Unspecified vulnerability in FreeType 2.3.9, and other versions before ...)
 	- freetype 2.4.2-1 (unimportant)
 CVE-2010-3053 (bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause ...)
@@ -1727,9 +1731,6 @@
 	- webkitkde 0.4svn1059630-1
 CVE-2009-4975 (Cross-site scripting (XSS) vulnerability in webview.cpp in ...)
 	- rekonq 0.5.0-1
-CVE-2010-XXXX [Insufficient stripping of CR/LF allows arbitrary IRC command execution]
-	- libpoe-component-irc-perl 6.32+dfsg-1
-	[lenny] - libpoe-component-irc-perl 6.32+dfsg-1 (bug #581194)
 CVE-2010-2926 (SQL injection vulnerability in index.php in sNews 1.7 allows remote ...)
 	NOT-FOR-US: sNews CMS
 CVE-2010-2925 (SQL injection vulnerability in index.php in Freeway CMS 1.4.3.210 ...)
@@ -6266,9 +6267,6 @@
 	NOT-FOR-US: Joomla!
 CVE-2010-1303 (Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy ...)
 	NOT-FOR-US: Drupal module
-CVE-2010-XXXX [abcm2ps]
-	- abcm2ps 5.9.13-0.1 (low; bug #577014)
-	[lenny] - abcm2ps <no-dsa> (Minor issue)
 CVE-2010-1302 (Directory traversal vulnerability in dwgraphs.php in the DecryptWeb DW ...)
 	NOT-FOR-US: Joomla!
 CVE-2010-1301 (SQL injection vulnerability in main.php in Centreon 2.1.5 allows ...)
@@ -7114,9 +7112,6 @@
 	NOT-FOR-US: JustSystems Corporation Ichitaro
 CVE-2009-4736 (Cross-site scripting (XSS) vulnerability in search.php in CommonSense ...)
 	NOT-FOR-US: CommonSense CMS
-CVE-2010-XXXX [alien-arena: server dos]
-	- alien-arena 7.33-5 (low; bug #575621)
-	[lenny] - alien-arena 7.0-1+lenny2
 CVE-2010-XXXX [phpCAS XSS in final_uri; PHPCAS-52]
 	- libphp-cas <itp> (bug #495542)
 	- glpi 0.72.4-2 (bug #574760; unimportant)

More information about the Secure-testing-commits mailing list