[Secure-testing-commits] r16279 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Wed Mar 2 09:15:46 UTC 2011
Author: joeyh
Date: 2011-03-02 09:15:32 +0000 (Wed, 02 Mar 2011)
New Revision: 16279
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-03-02 08:19:31 UTC (rev 16278)
+++ data/CVE/list 2011-03-02 09:15:32 UTC (rev 16279)
@@ -7526,6 +7526,7 @@
- linux-2.6 2.6.32-25
[lenny] - linux-2.6 2.6.26-25
CVE-2010-2941 (ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate ...)
+ {DSA-2176-1}
- cups 1.4.4-7 (bug #603344)
CVE-2010-2940 (The auth_send function in providers/ldap/ldap_auth.c in System ...)
- sssd 1.2.1-4 (bug #594413)
@@ -8924,8 +8925,10 @@
CVE-2010-2433 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
NOT-FOR-US: IBM WebSphere
CVE-2010-2432 (The cupsDoAuthentication function in auth.c in the client in CUPS ...)
+ {DSA-2176-1}
- cups 1.4.4-1
CVE-2010-2431 (The cupsFileOpen function in CUPS before 1.4.4 allows local users, ...)
+ {DSA-2176-1}
- cups 1.4.4-1
CVE-2010-2430
RESERVED
@@ -10806,6 +10809,7 @@
NOTE: https://bugs.webkit.org/show_bug.cgi?id=38625
NOTE: http://trac.webkit.org/changeset/45941
CVE-2010-1748 (The cgi_initialize_string function in cgi-bin/var.c in the web ...)
+ {DSA-2176-1}
- cups 1.4.4-1
CVE-2010-1747
RESERVED
@@ -14562,6 +14566,7 @@
CVE-2010-0543 (ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows ...)
NOT-FOR-US: Apple Mac OS X
CVE-2010-0542 (The _WriteProlog function in texttops.c in texttops in the Text Filter ...)
+ {DSA-2176-1}
- cups 1.4.4-1
CVE-2010-0541 (Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in ...)
- ruby1.8 1.8.7.302-1
@@ -14570,6 +14575,7 @@
[lenny] - ruby1.9 <no-dsa> (Minor issue)
- ruby1.9.1 1.9.2.0-1 (bug #593298)
CVE-2010-0540 (Cross-site request forgery (CSRF) vulnerability in the web interface ...)
+ {DSA-2176-1}
- cups 1.4.4-1
CVE-2010-0539 (Integer signedness error in the window drawing implementation in Apple ...)
NOT-FOR-US: Apple Java
@@ -19166,6 +19172,7 @@
- jbossas4 4.2.2.GA-1 (bug #562000)
[lenny] - jbossas4 <no-dsa> (Contrib not supported)
CVE-2009-3553 (Use-after-free vulnerability in the abstract file-descriptor handling ...)
+ {DSA-2176-1}
- cups 1.4.2-4 (low; bug #557740)
[lenny] - cups <no-dsa> (Minor issue)
- cupsys <not-affected> (vulnerable code introduced in 1.3.x)
@@ -33529,6 +33536,7 @@
CVE-2008-5133 (ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, ...)
NOT-FOR-US: ipnat
CVE-2008-5183 (cupsd in CUPS 1.3.9 and earlier allows local users, and possibly ...)
+ {DSA-2176-1}
- cups 1.3.9-13 (low; bug #506180)
[lenny] - cups <no-dsa> (Minor issue)
[etch] - cupsys <not-affected> (RSS subscription code not yet present)
More information about the Secure-testing-commits
mailing list