jmm-guest at alioth.debian.org
2009-Mar-26 17:44 UTC
[Secure-testing-commits] r11480 - data/CVE
Author: jmm-guest Date: 2009-03-26 17:44:15 +0000 (Thu, 26 Mar 2009) New Revision: 11480 Modified: data/CVE/list Log: new kernel issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-26 17:36:15 UTC (rev 11479) +++ data/CVE/list 2009-03-26 17:44:15 UTC (rev 11480) @@ -1,7 +1,11 @@ CVE-2009-1073 RESERVED CVE-2009-1072 (nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD ...) - TODO: check + - linux-2.6 2.6.29-1 + - linux-2.6.24 <unfixed> +CVE-2009-0934 (Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 ...) + - ejabberd <unfixed> (bug #520852) + TODO: check version in old/stable CVE-2009-1071 (Stack-based buffer overflow in Icarus 2.0 allows remote attackers to ...) TODO: check CVE-2009-1070 (Cross-site scripting (XSS) vulnerability in system/index.php in ...) @@ -346,9 +350,6 @@ [etch] - linux-2.6 <not-affected> (Vulnerability was introduced in 2.6.27-rc9) [lenny] - linux-2.6 <not-affected> (Vulnerability was introduced in 2.6.27-rc9) - linux-2.6.24 <not-affected> (Vulnerability was introduced in 2.6.27-rc9) -CVE-2009-0934 (Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 ...) - - ejabberd <unfixed> (bug #520852) - TODO: check version in old/stable CVE-2009-0933 (Cross-site scripting (XSS) vulnerability in the administrative ...) NOT-FOR-US: Dotclear CVE-2009-0932 (Directory traversal vulnerability in framework/Image/Image.php in ...)