Author: jmm-guest Date: 2009-06-21 19:31:07 +0000 (Sun, 21 Jun 2009) New Revision: 12175 Modified: data/CVE/list Log: some of the FreeBSD issues affect the kfreebsd port Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-06-21 17:26:39 UTC (rev 12174) +++ data/CVE/list 2009-06-21 19:31:07 UTC (rev 12175) @@ -222,12 +222,6 @@ - kfreebsd-7 7.2-2 [lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported) NOTE: http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc -CVE-2009-XXXX [freebsd Local information disclosure via direct pipe writes] - - kfreebsd-6 <removed> - [lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported) - - kfreebsd-7 7.2-2 - [lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported) - NOTE: http://security.freebsd.org/advisories/FreeBSD-SA-09:09.pipe.asc CVE-2009-XXXX [adtool leaks password in environment] - adtool 1.3.2-1 (unimportant) NOTE: adtool has safe means to specify the password, so this boils @@ -438,7 +432,10 @@ CVE-2009-1936 (_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a ...) NOT-FOR-US: cpCommerce CVE-2009-1935 (Integer overflow in the pipe_build_write_buffer function ...) - NOT-FOR-US: FreeBSD + - kfreebsd-6 <removed> + [lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported) + - kfreebsd-7 7.2-2 + [lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported) CVE-2009-1934 (Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in ...) NOT-FOR-US: Sun Java System Web Server CVE-2009-1933 (Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, ...)