Secure testing commits - Sep 2009 - r12835 - data/CVE

Author: jmm-guest
Date: 2009-09-17 16:01:50 +0000 (Thu, 17 Sep 2009)
New Revision: 12835

Modified:
   data/CVE/list
Log:
CVEfications
new kernel issue not for us


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-09-17 15:30:28 UTC (rev 12834)
+++ data/CVE/list	2009-09-17 16:01:50 UTC (rev 12835)
@@ -1,3 +1,6 @@
+CVE-2009-3234 [Buffer overflow in performance counters]
+	- linux-2.6 <not-affected> (Introduced in 2.6.31)
+	- linux-2.6.24 <not-affected> (Introduced in 2.6.31)
 CVE-2009-3227
 	NOT-FOR-US: AlmondSoft Almond Classifieds Ads Enterprise
 CVE-2009-3226
@@ -206,22 +209,21 @@
 	NOT-FOR-US: VirtueMart
 CVE-2008-7203 (Valve Software Half-Life Counter-Strike 1.6 allows remote
attackers to ...)
 	NOT-FOR-US: Valve Software Half-Life Counter-Strike
-CVE-2009-XXXX [pam-auth-update does not prohibit selecting an empty set of
modules]
+CVE-2009-3232 [pam-auth-update does not prohibit selecting an empty set of
modules]
 	- pam 1.0.1-10 (bug #519927)
 	[lenny] - pam <not-affected> (pam-auth-update not yet present)
 	[etch] - pam <not-affected> (pam-auth-update not yet present)
-	NOTE: CVE ID requested on oss-sec
-CVE-2009-XXXX [postgresql: Authenticated non-superusers can shut down the
backend server by re-LOAD-ing libraries]
+CVE-2009-3229 [postgresql: Authenticated non-superusers can shut down the
backend server by re-LOAD-ing libraries]
 	- postgresql-8.4 8.4.1-1
 	- postgresql-8.3 8.3.8-1
 	- postgresql-8.1 <not-affected>
 	- postgresql-7.4 <not-affected>
-CVE-2009-XXXX [postgresql: fix CVE-2007-6600 failed to include protection
against misuse of RESET SESSION AUTHORIZATION]
+CVE-2009-3230 [postgresql: fix CVE-2007-6600 failed to include protection
against misuse of RESET SESSION AUTHORIZATION]
 	- postgresql-8.4 8.4.1-1
 	- postgresql-8.3 8.3.8-1
 	- postgresql-8.1 <removed>
 	- postgresql-7.4 <removed>
-CVE-2009-XXXX [postgresql: LDAP authentication issue]
+CVE-2009-3231 [postgresql: LDAP authentication issue]
 	- postgresql-8.4 8.4.1-1
 	- postgresql-8.3 8.3.8-1
 	- postgresql-8.1 <not-affected>