Giuseppe Iuculano
2009-Jun-19 07:15 UTC
[Secure-testing-commits] r12159 - in data: CVE DSA
Author: derevko-guest
Date: 2009-06-19 07:15:30 +0000 (Fri, 19 Jun 2009)
New Revision: 12159
Modified:
data/CVE/list
data/DSA/list
Log:
slurm-llnl issue CVEfied
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-06-19 06:41:07 UTC (rev 12158)
+++ data/CVE/list 2009-06-19 07:15:30 UTC (rev 12159)
@@ -45,7 +45,8 @@
CVE-2009-2085
RESERVED
CVE-2009-2084 (Simple Linux Utility for Resource Management (SLURM) 1.2 and 1.3
...)
- TODO: check
+ - slurm-llnl 1.3.15-1 (bug #524980)
+ [lenny] - slurm-llnl 1.3.6-1lenny3
CVE-2009-2083 (Cross-site scripting (XSS) vulnerability in the term data detail
page ...)
NOT-FOR-US: Taxonomy
CVE-2009-2082 (SQL injection vulnerability in insidepage.php in Creative Web
...)
@@ -2061,9 +2062,6 @@
- pptp-linux 1.7.2-3 (low; bug #523476)
[lenny] - pptp-linux <no-dsa> (Minor issue)
[etch] - pptp-linux <no-dsa> (Minor issue)
-CVE-2009-XXXX [slurm-llnl doesn''t drop supplementary groups]
- - slurm-llnl 1.3.15-1 (bug #524980)
- [lenny] - slurm-llnl 1.3.6-1lenny3
CVE-2009-1330 (Stack-based buffer overflow in Easy RM to MP3 Converter allows
remote ...)
NOT-FOR-US: Easy RM to MP3 Converter
CVE-2009-1329 (Stack-based buffer overflow in Mini-stream Shadow Stream
Recorder ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2009-06-19 06:41:07 UTC (rev 12158)
+++ data/DSA/list 2009-06-19 07:15:30 UTC (rev 12159)
@@ -162,6 +162,7 @@
{CVE-2009-0664}
[lenny] - mahara 1.0.4-4+lenny2
[21 Apr 2009] DSA-1776-1 slurm-llnl - privilege escalation
+ {CVE-2009-2084}
[lenny] - slurm-llnl 1.3.6-1lenny3
[21 Apr 2009] DSA-1777-1 git-core - privilege escalation
[etch] - git-core 1:1.4.4.4-4+etch2