[Secure-testing-commits] r15836 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-01-12 22:02:45 +0000 (Wed, 12 Jan 2011)
New Revision: 15836

Modified:
   data/CVE/list
   data/next-point-update.txt
Log:
awstats spu


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-01-12 21:46:50 UTC (rev 15835)
+++ data/CVE/list	2011-01-12 22:02:45 UTC (rev 15836)
@@ -1686,12 +1686,14 @@
 CVE-2010-4370 (Multiple integer overflows in the in_midi plugin in Winamp before 5.6 ...)
 	NOT-FOR-US: Winamp
 CVE-2010-4369 (Directory traversal vulnerability in AWStats before 7.0 allows remote ...)
-	- awstats 6.9.5~dfsg-5 (bug #606263)
+	- awstats 6.9.5~dfsg-5 (low; bug #606263)
+	[lenny] - awstats <no-dsa> (Minor issue)
 CVE-2010-4368 (awstats.cgi in AWStats before 7.0 on Windows accepts a configdir ...)
 	- awstats <not-affected> (Windows-specific issue)
 	NOTE: looks like it's the same as CVE-2010-4367
 CVE-2010-4367 (awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the ...)
-	- awstats 6.9.5~dfsg-5 (bug #606263)
+	- awstats 6.9.5~dfsg-5 (low; bug #606263)
+	[lenny] - awstats <no-dsa> (Minor issue)
 CVE-2009-5020 (Open redirect vulnerability in awredir.pl in AWStats before 6.95 ...)
 	- awstats 6.9.5~dfsg-1
 CVE-2010-4338 [ocrodjvu insecure temp files handling]

Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt	2011-01-12 21:46:50 UTC (rev 15835)
+++ data/next-point-update.txt	2011-01-12 22:02:45 UTC (rev 15836)
@@ -19,6 +19,10 @@
 	[lenny] - mediawiki 1:1.12.0-2lenny7
 CVE-2011-XXXX
 	[lenny] - xdigger 1.0.10-13+lenny1
+CVE-2010-4369
+	[lenny] - awstats 6.7.dfsg-5.1+lenny1
+CVE-2010-4367
+	[lenny] - awstats 6.7.dfsg-5.1+lenny1
 
 
 
@@ -26,3 +30,4 @@
 
 
 
+