Author: geissert Date: 2010-02-02 04:46:59 +0000 (Tue, 02 Feb 2010) New Revision: 13994 Modified: data/CVE/list Log: two bugzilla, one moin, one squid issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-02-02 01:20:12 UTC (rev 13993) +++ data/CVE/list 2010-02-02 04:46:59 UTC (rev 13994) @@ -1,3 +1,13 @@ +CVE-2010-XXXX [Squid DoS when processing DNS packets] + - squid <unfixed> + - squid3 <unfixed> + NOTE: http://www.squid-cache.org/Advisories/SQUID-2010_1.txt + TODO: check +CVE-2010-XXXX [moinmoin unspecified issue] + - moin <unfixed> + NOTE: http://moinmo.in/SecurityFixes + NOTE: "you can avoid the issue by not having any user names in your superuser list" + TODO: check CVE-2010-0466 RESERVED CVE-2010-0465 @@ -2697,8 +2707,10 @@ RESERVED CVE-2009-3990 RESERVED -CVE-2009-3989 +CVE-2009-3989 [bugzilla possible information leak] RESERVED + - bugzilla <unfixed> (unimportant) + NOTE: http://www.bugzilla.org/security/3.0.10/ CVE-2009-3988 RESERVED CVE-2009-3987 (The GeckoActiveXObject function in Mozilla Firefox before 3.0.16 and ...) @@ -4474,8 +4486,11 @@ - liboggplay <unfixed> - xulrunner 1.9.1.6-1 [lenny] - xulrunner <not-affected> (Video playback capabilities were added in 3.5) -CVE-2009-3387 +CVE-2009-3387 [bugzilla possible information leak] RESERVED + - bugzilla <undetermined> (low) + NOTE: probably unimportant + TODO: check CVE-2009-3386 (Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1 ...) - bugzilla <not-affected> (Only 3.3 onwards are affected) TODO: recheck, once a more recent (3.3.x or 3.4.x) version has been uploaded