Author: derevko-guest Date: 2010-02-13 09:41:26 +0000 (Sat, 13 Feb 2010) New Revision: 14091 Modified: data/CVE/list Log: CVE-2010-0464 and CVE-2010-0463: privacy compromise via DNS prefetching in roundcube and imp4 Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-02-13 09:14:50 UTC (rev 14090) +++ data/CVE/list 2010-02-13 09:41:26 UTC (rev 14091) @@ -257,7 +257,6 @@ NOT-FOR-US: Xerox WorkCentre CVE-2010-0547 (client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier ...) - samba <unfixed> (bug #568942; medium) - TODO: check CVE-2010-0546 RESERVED CVE-2010-0545 @@ -441,9 +440,9 @@ CVE-2010-0465 RESERVED CVE-2010-0464 (Roundcube 0.3.1 and earlier does not request that the web browser ...) - TODO: check + - roundcube <unfixed> (bug #569660) CVE-2010-0463 (Horde IMP 4.3.6 and earlier does not request that the web browser ...) - TODO: check + - imp4 <unfixed> (bug #569661) CVE-2010-0462 (Heap-based buffer overflow in IBM DB2 9.7 and 9.7.1 on Linux allows ...) NOT-FOR-US: IBM DB2 CVE-2010-0461 (SQL injection vulnerability in the casino (com_casino) component 1.0 ...)