[Secure-testing-commits] r16279 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Mar 2 09:15:46 UTC 2011


Author: joeyh
Date: 2011-03-02 09:15:32 +0000 (Wed, 02 Mar 2011)
New Revision: 16279

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-02 08:19:31 UTC (rev 16278)
+++ data/CVE/list	2011-03-02 09:15:32 UTC (rev 16279)
@@ -7526,6 +7526,7 @@
 	- linux-2.6 2.6.32-25
 	[lenny] - linux-2.6 2.6.26-25
 CVE-2010-2941 (ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate ...)
+	{DSA-2176-1}
 	- cups 1.4.4-7 (bug #603344)
 CVE-2010-2940 (The auth_send function in providers/ldap/ldap_auth.c in System ...)
 	- sssd 1.2.1-4 (bug #594413)
@@ -8924,8 +8925,10 @@
 CVE-2010-2433 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	NOT-FOR-US: IBM WebSphere
 CVE-2010-2432 (The cupsDoAuthentication function in auth.c in the client in CUPS ...)
+	{DSA-2176-1}
 	- cups 1.4.4-1
 CVE-2010-2431 (The cupsFileOpen function in CUPS before 1.4.4 allows local users, ...)
+	{DSA-2176-1}
 	- cups 1.4.4-1
 CVE-2010-2430
 	RESERVED
@@ -10806,6 +10809,7 @@
 	NOTE: https://bugs.webkit.org/show_bug.cgi?id=38625
 	NOTE: http://trac.webkit.org/changeset/45941
 CVE-2010-1748 (The cgi_initialize_string function in cgi-bin/var.c in the web ...)
+	{DSA-2176-1}
 	- cups 1.4.4-1
 CVE-2010-1747
 	RESERVED
@@ -14562,6 +14566,7 @@
 CVE-2010-0543 (ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows ...)
 	NOT-FOR-US: Apple Mac OS X
 CVE-2010-0542 (The _WriteProlog function in texttops.c in texttops in the Text Filter ...)
+	{DSA-2176-1}
 	- cups 1.4.4-1
 CVE-2010-0541 (Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in ...)
 	- ruby1.8 1.8.7.302-1
@@ -14570,6 +14575,7 @@
 	[lenny] - ruby1.9 <no-dsa> (Minor issue)
 	- ruby1.9.1 1.9.2.0-1 (bug #593298)
 CVE-2010-0540 (Cross-site request forgery (CSRF) vulnerability in the web interface ...)
+	{DSA-2176-1}
 	- cups 1.4.4-1
 CVE-2010-0539 (Integer signedness error in the window drawing implementation in Apple ...)
 	NOT-FOR-US: Apple Java
@@ -19166,6 +19172,7 @@
 	- jbossas4 4.2.2.GA-1 (bug #562000)
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)
 CVE-2009-3553 (Use-after-free vulnerability in the abstract file-descriptor handling ...)
+	{DSA-2176-1}
 	- cups 1.4.2-4 (low; bug #557740)
 	[lenny] - cups <no-dsa> (Minor issue)
 	- cupsys <not-affected> (vulnerable code introduced in 1.3.x)
@@ -33529,6 +33536,7 @@
 CVE-2008-5133 (ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, ...)
 	NOT-FOR-US: ipnat
 CVE-2008-5183 (cupsd in CUPS 1.3.9 and earlier allows local users, and possibly ...)
+	{DSA-2176-1}
 	- cups 1.3.9-13 (low; bug #506180)
 	[lenny] - cups <no-dsa> (Minor issue)
 	[etch] - cupsys <not-affected> (RSS subscription code not yet present)




More information about the Secure-testing-commits mailing list