[Secure-testing-commits] r16094 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Feb 10 09:17:08 UTC 2011
Author: jmm
Date: 2011-02-10 09:17:00 +0000 (Thu, 10 Feb 2011)
New Revision: 16094
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
- tomcat fixed
- feh CVEfied
- new openssl issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-02-10 06:54:30 UTC (rev 16093)
+++ data/CVE/list 2011-02-10 09:17:00 UTC (rev 16094)
@@ -16,10 +16,6 @@
- aptitude <unfixed> (low; bug #612034)
[squeeze] - aptitude <no-dsa> (Minor issue)
[lenny] - aptitude <no-dsa> (Minor issue)
-CVE-2011-XXXX [feh tempfile]
- - feh <unfixed> (low; bug #612035)
- [squeeze] - feh <no-dsa> (Minor issue)
- [lenny] - feh <no-dsa> (Minor issue)
CVE-2011-0775 (pivotx/modules/module_image.php in PivotX 2.2.2 allows remote ...)
TODO: check
CVE-2011-0774 (PivotX 2.2.2 allows remote attackers to obtain sensitive information ...)
@@ -211,8 +207,11 @@
RESERVED
CVE-2011-0703
RESERVED
-CVE-2011-0702
+CVE-2011-0702 [feh tempfile]
RESERVED
+ - feh <unfixed> (low; bug #612035)
+ [squeeze] - feh <no-dsa> (Minor issue)
+ [lenny] - feh <no-dsa> (Minor issue)
CVE-2011-0701
RESERVED
CVE-2011-0700
@@ -602,7 +601,7 @@
CVE-2011-0534 [remote DoS via NIO connector]
RESERVED
- tomcat5.5 <not-affected> (Vulnerable code not present)
- - tomcat6 <unfixed>
+ - tomcat6 6.0.28-10
[lenny] - tomcat6 <not-affected> (Only ships the servlet package)
CVE-2011-0533
RESERVED
@@ -2291,13 +2290,15 @@
CVE-2011-0015 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not ...)
{DSA-2148-1}
- tor 0.2.1.29-1
-CVE-2011-0014
+CVE-2011-0014 [http://www.openssl.org/news/secadv_20110208.txt]
RESERVED
+ - openssl <unfixed> (low)
+ [lenny] - openssl <not-affected> (Only 0.9.8h through 0.9.8q are affected)
CVE-2011-0013 [tomcat HTML manager XSS]
RESERVED
- tomcat5.5 <removed> (low)
[lenny] - tomcat5.5 <no-dsa> (Minor issue)
- - tomcat6 <unfixed>
+ - tomcat6 6.0.28-10
[lenny] - tomcat6 <not-affected> (Only ships the servlet package)
CVE-2011-0012
RESERVED
@@ -4392,7 +4393,7 @@
RESERVED
- tomcat5.5 <removed> (low)
[lenny] - tomcat5.5 <no-dsa> (Minor issue)
- - tomcat6 <unfixed>
+ - tomcat6 6.0.28-10
[lenny] - tomcat6 <not-affected> (Only ships the servlet package)
CVE-2010-3717 (The t3lib_div::validEmail function in TYPO3 4.2.x before 4.2.15, 4.3.x ...)
{DSA-2121-1}
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2011-02-10 06:54:30 UTC (rev 16093)
+++ data/spu-candidates.txt 2011-02-10 09:17:00 UTC (rev 16094)
@@ -20,7 +20,7 @@
--
-feh (CVE-2011-XXXX)
+feh (CVE-2011-0702)
#612035
--
More information about the Secure-testing-commits
mailing list