white at alioth.debian.org
2009-Feb-04 21:54 UTC
[Secure-testing-commits] r11143 - data/CVE
Author: white Date: 2009-02-04 21:54:35 +0000 (Wed, 04 Feb 2009) New Revision: 11143 Modified: data/CVE/list Log: trickle issue CVEified Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-02-04 21:45:47 UTC (rev 11142) +++ data/CVE/list 2009-02-04 21:54:35 UTC (rev 11143) @@ -3,7 +3,8 @@ CVE-2009-0416 (The SSL certificate setup program (genSslCert.sh) in Standards Based ...) NOT-FOR-US: sblim-sfcb CVE-2009-0415 (Untrusted search path vulnerability in trickle 1.07 allows local users ...) - TODO: check + - trickle <unfixed> (bug #513456; low) + [etch] - trickle <no-dsa> (Minor issue) CVE-2009-0413 (Cross-site scripting (XSS) vulnerability in RoundCube Webmail ...) TODO: check CVE-2009-0412 (The ProcessLogin function in class.auth.php in Interspire Shopping ...) @@ -362,10 +363,6 @@ CVE-2008-XXXX [minor cyrus sasl DoS] - cyrus-sasl2 2.1.22.dfsg1-18 (bug #465561) [etch] - cyrus-sasl2 <no-dsa> (Minor issue) -CVE-2009-XXXX [trickle: LD_PRELOAD issue] - - trickle <unfixed> (bug #513456; low) - [etch] - trickle <no-dsa> (Minor issue) - NOTE: CVE id requested CVE-2009-0385 (Integer signedness error in the fourxm_read_header function in ...) - ffmpeg-debian 0.svn20080206-16 - ffmpeg <removed>