joeyh at alioth.debian.org
2008-Oct-20 21:14 UTC
[Secure-testing-commits] r10136 - data/CVE
Author: joeyh
Date: 2008-10-20 21:14:13 +0000 (Mon, 20 Oct 2008)
New Revision: 10136
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-10-20 20:30:32 UTC (rev 10135)
+++ data/CVE/list 2008-10-20 21:14:13 UTC (rev 10136)
@@ -90,6 +90,7 @@
- linux-2.6 2.6.26-9
- linux-2.6.24 <unfixed>
CVE-2008-4553 (qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows
local ...)
+ {DSA-1657-1}
- qemu 0.9.1-6 (low; bug #496394)
CVE-2008-4552 (nfs-utils 1.0.9, and possibly other versions before 1.1.3,
invokes the ...)
- nfs-utils 1:1.1.3-1
@@ -1196,7 +1197,7 @@
NOT-FOR-US: Microsoft
CVE-2008-4070 (Heap-based buffer overflow in Mozilla Thunderbird before
2.0.0.17 and ...)
- iceape 1.1.12-1
- - icedove 2.0.0.17-1
+ - icedove 2.0.0.17-1
CVE-2008-4069 (The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey
...)
{DSA-1649-1}
NOTE: Iceweasel 3.0 aka Xulrunner 1.9 not affected
@@ -2408,10 +2409,13 @@
CVE-2008-3642 (Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5
allows ...)
NOT-FOR-US: Mac OS
CVE-2008-3641 (The Hewlett-Packard Graphics Language (HPGL) filter in CUPS
before ...)
+ {DSA-1656-1}
TODO: check
CVE-2008-3640 (Integer overflow in the WriteProlog function in texttops in CUPS
...)
+ {DSA-1656-1}
TODO: check
CVE-2008-3639 (Heap-based buffer overflow in the read_rle16 function in
imagetops in ...)
+ {DSA-1656-1}
TODO: check
CVE-2008-3638 (Java on Apple Mac OS X 10.5.4 and 10.5.5 does not prevent
applets from ...)
NOT-FOR-US: Mac OSX
@@ -5087,6 +5091,7 @@
NOT-FOR-US: InstallShield
CVE-2008-2469
RESERVED
+ {DTSA-172-1}
CVE-2008-2468 (Multiple buffer overflows in the QIP Server Service (aka
qipsrvr.exe) ...)
NOT-FOR-US: LANDesk Management Suite
CVE-2008-2467