[Secure-testing-commits] r17493 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Mon Oct 24 23:50:35 UTC 2011 

Author: gilbert-guest
Date: 2011-10-24 23:50:35 +0000 (Mon, 24 Oct 2011)
New Revision: 17493

Modified:
   data/CVE/list
Log:
kfreebsd updates

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-10-24 21:14:21 UTC (rev 17492)
+++ data/CVE/list	2011-10-24 23:50:35 UTC (rev 17493)
@@ -8995,7 +8995,9 @@
 CVE-2008-7274 (IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login ...)
 	NOT-FOR-US: IBM WebSphere Application Server
 CVE-2011-1132 (The IPv6 implementation in the kernel in Apple Mac OS X before 10.6.8 ...)
-	- kfreebsd-8 <unfixed> (low; bug #613312; bug #611476)
+	NOT-FOR-US: Apple IPv6 implementation
+CVE-2011-XXXX [kfreebsd dos]
+	- kfreebsd-8 8.2-1 (low; bug #613312; bug #611476)
 	[squeeze] - kfreebsd-8 8.1+dfsg-8 
 	[lenny] - kfreebsd-8 <no-dsa> (Not-supported in Lenny)
 	- kfreebsd-7 <unfixed> (bug #613312)
@@ -13135,11 +13137,11 @@
 CVE-2010-4211 (The PayPal app before 3.0.1 for iOS does not verify that the server ...)
 	NOT-FOR-US: PayPal app for iOS
 CVE-2010-4210 (The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x ...)
-	- kfreebsd-7 <undetermined>
+	- kfreebsd-7 <unfixed>
 	[lenny] - kfreebsd-7 <no-dsa> (Not covered by security support in Lenny)
-	- kfreebsd-8 <undetermined>
-	TODO: check
-	NOTE: probably already fixed in squeeze
+	- kfreebsd-8 8.1-1
+	- kfreebsd-9 <not-affected> (fixed prior to first upload)
+	- kfreebsd-10 <not-affected> (fixed prior to first upload)
 CVE-2010-4209 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
 	- yui 2.8.2r1~squeeze-1 (bug #603513)
 CVE-2010-4208 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
@@ -16535,8 +16537,10 @@
 CVE-2008-7259
 	RESERVED
 CVE-2010-3014 (The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when ...)
-	- kfreebsd-7 <undetermined>
+	- kfreebsd-7 <unfixed>
 	- kfreebsd-8 8.1-5
+	- kfreebsd-9 <not-affected> (fixed prior to first upload)
+	- kfreebsd-10 <not-affected> (fixed prior to first upload)
 CVE-2010-3015 (Integer overflow in the ext4_ext_get_blocks function in ...)
 	{DSA-2094-1}
 	- linux-2.6 2.6.32-22

More information about the Secure-testing-commits mailing list