[Secure-testing-commits] r16472 - data/CVE

Sat Apr 2 19:08:15 UTC 2011

Author: thijs
Date: 2011-04-02 19:07:59 +0000 (Sat, 02 Apr 2011)
New Revision: 16472

Modified:
   data/CVE/list
Log:
new xmlsec1 issue, tiff fixed in sid


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2011-04-02 16:58:01 UTC (rev 16471)
+++ data/CVE/list	2011-04-02 19:07:59 UTC (rev 16472)
@@ -369,8 +369,10 @@
 	NOT-FOR-US: Kodak InSite
 CVE-2011-1426
 	RESERVED
-CVE-2011-1425
+CVE-2011-1425 [xmlsec file overwrite]
 	RESERVED
+	- xmlsec1 <unfixed> (bug filed)
+	NOTE: http://www.aleksey.com/xmlsec/news.html
 CVE-2011-1424
 	RESERVED
 CVE-2011-1423
@@ -1002,7 +1004,7 @@
 CVE-2011-1168
 	RESERVED
 CVE-2011-1167 (Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in ...)
-	- tiff <unfixed> (bug filed)
+	- tiff 3.9.4-9 (bug #619614)
 CVE-2011-1166
 	RESERVED
 CVE-2011-1165


