[Secure-testing-commits] r15836 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jan 12 22:02:45 UTC 2011
Author: jmm
Date: 2011-01-12 22:02:45 +0000 (Wed, 12 Jan 2011)
New Revision: 15836
Modified:
data/CVE/list
data/next-point-update.txt
Log:
awstats spu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-01-12 21:46:50 UTC (rev 15835)
+++ data/CVE/list 2011-01-12 22:02:45 UTC (rev 15836)
@@ -1686,12 +1686,14 @@
CVE-2010-4370 (Multiple integer overflows in the in_midi plugin in Winamp before 5.6 ...)
NOT-FOR-US: Winamp
CVE-2010-4369 (Directory traversal vulnerability in AWStats before 7.0 allows remote ...)
- - awstats 6.9.5~dfsg-5 (bug #606263)
+ - awstats 6.9.5~dfsg-5 (low; bug #606263)
+ [lenny] - awstats <no-dsa> (Minor issue)
CVE-2010-4368 (awstats.cgi in AWStats before 7.0 on Windows accepts a configdir ...)
- awstats <not-affected> (Windows-specific issue)
NOTE: looks like it's the same as CVE-2010-4367
CVE-2010-4367 (awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the ...)
- - awstats 6.9.5~dfsg-5 (bug #606263)
+ - awstats 6.9.5~dfsg-5 (low; bug #606263)
+ [lenny] - awstats <no-dsa> (Minor issue)
CVE-2009-5020 (Open redirect vulnerability in awredir.pl in AWStats before 6.95 ...)
- awstats 6.9.5~dfsg-1
CVE-2010-4338 [ocrodjvu insecure temp files handling]
Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt 2011-01-12 21:46:50 UTC (rev 15835)
+++ data/next-point-update.txt 2011-01-12 22:02:45 UTC (rev 15836)
@@ -19,6 +19,10 @@
[lenny] - mediawiki 1:1.12.0-2lenny7
CVE-2011-XXXX
[lenny] - xdigger 1.0.10-13+lenny1
+CVE-2010-4369
+ [lenny] - awstats 6.7.dfsg-5.1+lenny1
+CVE-2010-4367
+ [lenny] - awstats 6.7.dfsg-5.1+lenny1
@@ -26,3 +30,4 @@
+
More information about the Secure-testing-commits
mailing list