joeyh at alioth.debian.org
2009-Mar-03 09:14 UTC
[Secure-testing-commits] r11317 - data/CVE
Author: joeyh Date: 2009-03-03 09:14:18 +0000 (Tue, 03 Mar 2009) New Revision: 11317 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-03 08:35:30 UTC (rev 11316) +++ data/CVE/list 2009-03-03 09:14:18 UTC (rev 11317) @@ -1540,6 +1540,7 @@ - mahara 1.0.9-1 (low) [lenny] - mahara 1.0.4-4 CVE-2009-0478 (Squid 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 ...) + {DSA-1732-1} - squid 2.7.STABLE3-4.1 (medium; bug #514142) - squid3 3.0.STABLE8-3 (medium) [etch] - squid <not-affected> (Vulnerable code not present) @@ -6902,12 +6903,14 @@ CVE-2008-4105 (JRequest in Joomla! 1.5 before 1.5.7 does not sanitize variables that ...) NOT-FOR-US: Joomla CVE-2008-4104 (Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 ...) + {DSA-1733-1} NOT-FOR-US: Joomla CVE-2008-4103 (The mailto (aka com_mailto) component in Joomla! 1.5 before 1.5.7 ...) NOT-FOR-US: Joomla CVE-2008-4102 (Joomla! 1.5 before 1.5.7 initializes PHP''s PRNG with a weak seed, ...) NOT-FOR-US: Joomla CVE-2008-4101 (Vim 3.0 through 7.x before 7.2.010 does not properly escape ...) + {DSA-1733-1} - vim 2:7.2.010-1 (low; bug #500381) [lenny] - vim 1:7.1.314-3+lenny1 CVE-2008-4098 (MySQL before 5.0.67 allows local users to bypass certain privilege ...) @@ -9514,12 +9517,15 @@ [etch] - linux-2.6 <not-affected> (Vulnerable code added later) NOTE: 1e9a615bfce7996ea4d815d45d364b47ac6a74e8 CVE-2008-3076 (The Netrw plugin 125 in netrw.vim in Vim 7.2a.10 allows user-assisted ...) + {DSA-1733-1} - vim 2:7.2.010-1 (bug #506919) [lenny] - vim 1:7.1.314-3+lenny1 (bug #506919) CVE-2008-3075 (The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, ...) + {DSA-1733-1} - vim 2:7.2.010-1 (bug #506919) [lenny] - vim 1:7.1.314-3+lenny1 (bug #506919) CVE-2008-3074 (The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, ...) + {DSA-1733-1} - vim 2:7.2.010-1 (bug #506919) [lenny] - vim 1:7.1.314-3+lenny1 (bug #506919) CVE-2008-3073 (Unspecified vulnerability in Simple Machines Forum (SMF) 1.1.x before ...) @@ -10431,7 +10437,7 @@ - nasm 2.03.01-1 (low; bug #486715) [etch] - nasm <not-affected> (vulnerable code not present) CVE-2008-2712 (Vim 7.1.314, 6.4, and other versions allows user-assisted remote ...) - {DTSA-143-1} + {DSA-1733-1 DTSA-143-1} - vim 1:7.1.314-3 (low; bug #486502) CVE-2008-2696 (Exiv2 0.16 allows user-assisted remote attackers to cause a denial of ...) - exiv2 0.17-1 (low; bug #486328)