Author: seb Date: 2010-05-03 14:23:40 +0000 (Mon, 03 May 2010) New Revision: 14594 Modified: data/CVE/list Log: This time, really fix typo in Debian bug number for theora issue (CVE-2009-3389). Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-05-03 11:56:41 UTC (rev 14593) +++ data/CVE/list 2010-05-03 14:23:40 UTC (rev 14594) @@ -3648,7 +3648,7 @@ - xulrunner 1.9.1-1 [etch] - xulrunner <not-affected> (theora introduced in 1.9.1) [lenny] - xulrunner <not-affected> (theora introduced in 1.9.1) - - libtheora 1.1.1+dfsg.1-3 (medium; bug #527950) + - libtheora 1.1.1+dfsg.1-3 (medium; bug #572950) [etch] - libtheora <not-affected> (vulnerable code not present) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=498815 NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=498824 @@ -7970,7 +7970,7 @@ CVE-2009-3390 (Multiple unspecified vulnerabilities in the (1) iscsiadm and (2) ...) NOT-FOR-US: iscsiadm and iscsitadm programs in Sun Solaris 10 CVE-2009-3389 (Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used ...) - - libtheora 1.1 (bug #527950) + - libtheora 1.1 (bug #572950) [etch] - libtheora <not-affected> (vulnerable code not present) - xulrunner 1.9.1.6-1 [etch] - xulrunner <end-of-life> (Mozilla packages from oldstable no longer covered by security support)