Author: gilbert-guest Date: 2010-12-01 04:05:25 +0000 (Wed, 01 Dec 2010) New Revision: 15632 Modified: data/CVE/list Log: new kerberos advisory Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-11-30 21:17:09 UTC (rev 15631) +++ data/CVE/list 2010-12-01 04:05:25 UTC (rev 15632) @@ -750,10 +750,12 @@ NOT-FOR-US: HP Insight Control Power Management CVE-2010-4022 RESERVED -CVE-2010-4021 +CVE-2010-4021 [krb5 checksum handling] RESERVED -CVE-2010-4020 + - krb5 <unfixed> (bug #605553) +CVE-2010-4020 [krb5 checksum handling] RESERVED + - krb5 <unfixed> (bug #605553) CVE-2010-4019 RESERVED CVE-2010-4018 @@ -8085,10 +8087,12 @@ NOTE: http://march-hare.com/cvspro/vuln.htm CVE-2010-1325 (Cross-site request forgery (CSRF) vulnerability in the apache2-slms ...) NOT-FOR-US: SUSE Lifecycle Management Server -CVE-2010-1324 +CVE-2010-1324 [krb5 checksum handling] RESERVED -CVE-2010-1323 + - krb5 <unfixed> (bug #605553) +CVE-2010-1323 [krb5 checksum handling] RESERVED + - krb5 <unfixed> (bug #605553) CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key Distribution ...) - krb5 1.8.3+dfsg-2 (bug #599237) [lenny] - krb5 <not-affected> (Only affects 1.8)