[Secure-testing-commits] r16250 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Feb 25 07:45:06 UTC 2011
Author: jmm
Date: 2011-02-25 07:44:56 +0000 (Fri, 25 Feb 2011)
New Revision: 16250
Modified:
data/CVE/list
Log:
- rails bug
- one kernel issue not affected
- cgiirc fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-02-24 22:09:01 UTC (rev 16249)
+++ data/CVE/list 2011-02-25 07:44:56 UTC (rev 16250)
@@ -923,6 +923,8 @@
CVE-2011-0716
RESERVED
- linux-2.6 <unfixed> (low)
+ [lenny] - linux-2.6 <not-affected> (Vulnerable code not present, introduced in 2.6.34)
+ [squeeze] - linux-2.6 <not-affected> (Vulnerable code not present, introduced in 2.6.34)
CVE-2011-0715
RESERVED
CVE-2011-0714
@@ -1611,9 +1613,9 @@
CVE-2011-0448 (Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the ...)
- rails <not-affected> (Only affects 3.x)
CVE-2011-0447 (Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before ...)
- - rails <unfixed>
+ - rails <unfixed> (bug #614864)
CVE-2011-0446 (Multiple cross-site scripting (XSS) vulnerabilities in the mail_to ...)
- - rails <unfixed>
+ - rails <unfixed> (bug #614864)
CVE-2010-4695 (A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as ...)
- gif2png 2.5.4-2 (low; bug #610479)
[lenny] - gif2png <no-dsa> (Minor issue)
@@ -2727,7 +2729,7 @@
RESERVED
CVE-2011-0050 (Cross-site scripting (XSS) vulnerability in the nonjs interface ...)
{DSA-2158-1}
- - cgiirc <unfixed> (bug #612671)
+ - cgiirc 0.5.9-3.1 (bug #612671)
CVE-2011-0049 (Directory traversal vulnerability in the _list_file_get function in ...)
NOT-FOR-US: Majordomo
CVE-2011-0048 (Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and ...)
More information about the Secure-testing-commits
mailing list