Author: nion
Date: 2011-05-31 21:08:48 +0000 (Tue, 31 May 2011)
New Revision: 16742
Modified:
data/CVE/list
data/DSA/list
Log:
billion laughs against various jabberds fixed
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-05-31 20:42:39 UTC (rev 16741)
+++ data/CVE/list 2011-05-31 21:08:48 UTC (rev 16742)
@@ -1045,14 +1045,18 @@
NOTE:
http://git.fedorahosted.org/git/?p=sssd.git;a=commitdiff;h=fffdae81651b460f3d2c119c56d5caa09b4de42a
CVE-2011-1757
RESERVED
-CVE-2011-1756
+CVE-2011-1756 [citadel-server billion laughs]
RESERVED
-CVE-2011-1755
+ - citadel <unfixed> (medium)
+CVE-2011-1755 [jabberd2 billion laughs]
RESERVED
-CVE-2011-1754
+ - jabberd2 2.2.8-2.1 (medium)
+CVE-2011-1754 [jabberd14 billion laughs]
RESERVED
-CVE-2011-1753
+ - jabberd14 1.6.1.1-5.1
+CVE-2011-1753 [ejabberd billion laughs]
RESERVED
+ - ejabberd 2.1.6-2.1 (medium)
CVE-2011-1752
RESERVED
CVE-2011-1751
Modified: data/DSA/list
==================================================================---
data/DSA/list 2011-05-31 20:42:39 UTC (rev 16741)
+++ data/DSA/list 2011-05-31 21:08:48 UTC (rev 16742)
@@ -1,3 +1,14 @@
+[31 May 2011] DSA-2250-1 citadel - denial of service
+ {CVE-2011-1756}
+ [squeeze] - citadel 7.83-2squeeze2
+ [lenny] - citadel 7.37-8+lenny1
+[31 May 2011] DSA-2249-1 jabberd14 - denial of service
+ {CVE-2011-1754}
+ [squeeze] - jabberd14 1.6.1.1-5+squeeze1
+[31 May 2011] DSA-2248-1 ejabberd - denial of service
+ {CVE-2011-1753}
+ [squeeze] - ejabberd 2.1.5-3+squeeze1
+ [lenny] - ejabberd 2.0.1-6+lenny3
[31 May 2011] DSA-2247-1 rails - several vulnerabilities
{CVE-2011-0446 CVE-2011-0447}
[squeeze] - rails 2.3.5-1.2+squeeze0.1