Author: jmm-guest Date: 2010-11-18 21:14:08 +0000 (Thu, 18 Nov 2010) New Revision: 15603 Modified: data/CVE/list Log: kernel updates one php5 issue no-dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-11-18 20:32:25 UTC (rev 15602) +++ data/CVE/list 2010-11-18 21:14:08 UTC (rev 15603) @@ -227,8 +227,10 @@ RESERVED CVE-2010-4165 RESERVED + - linux-2.6 2.6.32-28 CVE-2010-4164 RESERVED + - linux-2.6 2.6.32-28 CVE-2010-4163 RESERVED CVE-2010-4162 @@ -897,10 +899,10 @@ - linux-2.6 <unfixed> (low) CVE-2010-3874 RESERVED - - linux-2.6 <unfixed> (low) + - linux-2.6 <unfixed> (unimportant) CVE-2010-3873 RESERVED - - linux-2.6 <unfixed> (low) + - linux-2.6 2.6.32-28 (low) CVE-2010-3872 RESERVED CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...) @@ -14875,6 +14877,7 @@ RESERVED CVE-2009-XXXX [php5''s pear is vulnerable to symlink attacks] - php5 <unfixed> (low; bug #546164) + [squeeze] - php5 <no-dsa> (Minor issue) NOTE: side-effect reported to upstream: http://bugs.php.net/44354 NOTE: but they apparently only fixed the issue at build time NOTE: needs re-testing, as I don''t remember the test conditions