Author: jmm
Date: 2011-06-14 16:40:30 +0000 (Tue, 14 Jun 2011)
New Revision: 16805
Modified:
data/CVE/list
Log:
- new dbus issue (no-dsa)
- new kernel issue
- one php issue a non-issue
- new tftp-hpa issue (front desk, please create ticket/file bug)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-06-14 16:11:06 UTC (rev 16804)
+++ data/CVE/list 2011-06-14 16:40:30 UTC (rev 16805)
@@ -1,3 +1,8 @@
+CVE-2011-2203 [HFS DoS]
+ - linux-2.6 <unfixed>
+CVE-2011-2199 [tftp-hpa buffer overflow]
+ - tftp-hpa <unfixed>
+ NOTE:
http://git.kernel.org/?p=network/tftp/tftp-hpa.git;a=commitdiff;h=f3035c45bc50bb5cac87ca01e7ef6a12485184f8
CVE-2011-2198 [vte memory exhaustion]
- vte <unfixed> (low; bug #629688)
[lenny] - vte <no-dsa> (Minor issue)
@@ -5098,9 +5103,9 @@
- php5 5.3.6-1
NOTE: http://svn.php.net/viewvc?view=revision&revision=307867
CVE-2011-0420 (The grapheme_extract function in the Internationalization
extension ...)
- - php5 <unfixed> (low)
+ - php5 <unfixed> (unimportant)
[lenny] - php5 <not-affected> (intl extension added in 5.3)
- [squeeze] - php5 <no-dsa> (Minor issue)
+ NOTE: Only triggerable through malicious script
NOTE: http://svn.php.net/viewvc?view=revision&revision=306449
CVE-2011-0419 (Stack consumption vulnerability in the fnmatch implementation in
...)
{DSA-2237-2}
@@ -13088,6 +13093,9 @@
NOT-FOR-US: Adobe Reader
CVE-2010-2200
RESERVED
+ - dbus 1.4.12-1 (low; bug #629938)
+ [squeeze] - dbus <no-dsa> (Minor issue, will be fixed in point update)
+ [lenny] - dbus <no-dsa> (Minor issue)
CVE-2010-2199 (lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the
...)
- rpm <unfixed> (bug #584257; unimportant)
NOTE: Marking as unimportant since rpm isn''t used as a package
manager