[Secure-testing-commits] r16404 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sun Mar 20 09:15:41 UTC 2011 

Author: joeyh
Date: 2011-03-20 09:15:30 +0000 (Sun, 20 Mar 2011)
New Revision: 16404

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-20 01:22:03 UTC (rev 16403)
+++ data/CVE/list	2011-03-20 09:15:30 UTC (rev 16404)
@@ -2148,6 +2148,7 @@
 	NOTE: Not packaged in Debian, separate package Shibboleth IdP
 	NOTE: http://shibboleth.internet2.edu/secadv/secadv_20110113.txt
 CVE-2011-0520 (The compress_add_dlabel_points function in dns/Compress.c in MaraDNS ...)
+	{DSA-2196-1}
 	- maradns 1.4.03-1.1 (bug #610834)
 CVE-2011-0634
 	REJECTED
@@ -2632,6 +2633,7 @@
 	TODO: check
 CVE-2011-0441 [arbitrary files removal via cronjob]
 	RESERVED
+	{DSA-2195-1}
 	- php5 5.3.6-1 (bug #618489)
 	NOTE: Debian-specific
 CVE-2011-0440
@@ -5226,6 +5228,7 @@
 CVE-2010-4151 (SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly ...)
 	NOT-FOR-US: DeluxeBB
 CVE-2010-4150 (Double free vulnerability in the imap_do_open function in the IMAP ...)
+	{DSA-2195-1}
 	- php5 5.3.3-7
 CVE-2009-5015 (The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 ...)
 	- turbogears2 2.0.3-1
@@ -5909,6 +5912,7 @@
 CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...)
 	- mahara <not-affected> (Vulnerable feature introduced in 1.3)
 CVE-2010-3870 (The utf8_decode function in PHP before 5.3.4 does not properly handle ...)
+	{DSA-2195-1}
 	- php5 5.3.3-4 (bug #603751)
 CVE-2010-3869 (Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate ...)
 	NOT-FOR-US: Red Hat Certificate System
@@ -6426,8 +6430,10 @@
 	- pidgin 2.7.4-1
 	[squeeze] - pidgin 2.7.3-1+squeeze1
 CVE-2010-3710 (Stack consumption vulnerability in the filter_var function in PHP ...)
+	{DSA-2195-1}
 	- php5 5.3.3-3 (bug #601619)
 CVE-2010-3709 (The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 ...)
+	{DSA-2195-1}
 	- php5 5.3.3-4 (bug #603751)
 CVE-2010-3708 (The serialization implementation in JBoss Drools in Red Hat JBoss ...)
 	- jbossas4 <not-affected> (Only builds a few libraries, not the full application server, #581226)

More information about the Secure-testing-commits mailing list