[Secure-testing-commits] r15942 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Sat Jan 22 14:43:52 UTC 2011
Author: jmm
Date: 2011-01-22 14:43:51 +0000 (Sat, 22 Jan 2011)
New Revision: 15942
Modified:
data/CVE/list
Log:
new pango issue
two unimportant issues fixed
record pcsc-lite sid fix, not exp
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-01-22 14:20:42 UTC (rev 15941)
+++ data/CVE/list 2011-01-22 14:43:51 UTC (rev 15942)
@@ -1704,9 +1704,9 @@
RESERVED
- offlineimap <unfixed> (bug #603450)
CVE-2010-4531 (Stack-based buffer overflow in the ATRDecodeAtr function in the ...)
- - pcsc-lite 1.6.6-1 (low; bug #607781)
+ - pcsc-lite 1.5.5-4 (low; bug #607781)
CVE-2010-4530 (Signedness error in ccid_serial.c in libccid in the USB Chip/Smart ...)
- - ccid <unfixed> (unimportant; bug #607780)
+ - ccid 1.3.11-2 (unimportant; bug #607780)
NOTE: CVE requested, http://seclists.org/oss-sec/2010/q4/356
NOTE: Theoretical attack
CVE-2011-XXXX [unspecified denial of service]
@@ -1812,6 +1812,7 @@
RESERVED
CVE-2011-0020
RESERVED
+ - pango1.0 <unfixed> (bug #610792)
CVE-2011-0019
RESERVED
CVE-2011-0018
@@ -2109,7 +2110,7 @@
- collectd 4.10.1-2.1 (bug #605092; low)
[squeeze] - collectd 4.10.1-1+squeeze2
CVE-2010-4337 (The configure script in gnash 0.8.8 allows local users to overwrite ...)
- - gnash <unfixed> (unimportant; bug #605419)
+ - gnash 0.8.8-8 (unimportant; bug #605419)
CVE-2006-7243 (PHP before 5.3.4 accepts the \0 character in a pathname, which might ...)
- php5 5.3.3-6 (low)
NOTE: old, known, issue -- partial protection by the suhosin extension
More information about the Secure-testing-commits
mailing list