Author: gilbert-guest Date: 2010-04-11 18:37:58 +0000 (Sun, 11 Apr 2010) New Revision: 14453 Modified: data/CVE/list Log: png issues got a dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-04-11 17:20:14 UTC (rev 14452) +++ data/CVE/list 2010-04-11 18:37:58 UTC (rev 14453) @@ -3296,7 +3296,6 @@ RESERVED CVE-2010-0205 (The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before ...) - libpng 1.2.43-1 (low; bug #572308) - [lenny] - libpng <no-dsa> (Minor issue) TODO: check freeimage, tuxonice-userui NOTE: http://www.kb.cert.org/vuls/id/576029 CVE-2010-0204 @@ -11658,7 +11657,6 @@ CVE-2009-2042 (libpng before 1.2.37 does not properly parse 1-bit interlaced images ...) - libpng 1.2.37-1 (low; bug #533676) [etch] - libpng <no-dsa> (Minor issue, only exploitable in rare setups) - [lenny] - libpng <no-dsa> (Minor issue, only exploitable in rare setups) - xulrunner <not-affected> (xulrunner dynamically linked against libpng; embeded code copy not used) TODO: check freeimage, tuxonice-userui CVE-2009-2041 (Cross-site scripting (XSS) vulnerability in A51 D.O.O. activeCollab ...)