Author: derevko-guest Date: 2009-09-18 07:10:45 +0000 (Fri, 18 Sep 2009) New Revision: 12844 Modified: data/CVE/list Log: - changetrack fixed - CVE-2009-2813 and CVE-2009-2807: details are unknown Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-09-17 21:39:02 UTC (rev 12843) +++ data/CVE/list 2009-09-18 07:10:45 UTC (rev 12844) @@ -103,7 +103,7 @@ CVE-2009-3184 (Multiple SQL injection vulnerabilities in index.php in Pirates of The ...) NOT-FOR-US: Pirates of The Caribbean CVE-2009-3233 [changetrack command injection] - - changetrack <unfixed> (medium; bug #546791) + - changetrack 4.5-2 (medium; bug #546791) CVE-2008-7228 (Multiple format string vulnerabilities in White_Dune before ...) - whitedune <not-affected> (bug #546903) NOTE: The debian binary versions are not compiled with the --with-aflockdebug option @@ -1472,7 +1472,9 @@ CVE-2009-2814 (Cross-site scripting (XSS) vulnerability in the Wiki Server in Apple ...) NOT-FOR-US: Apple Mac OS X CVE-2009-2813 (The SMB (aka Samba) subsystem in Apple Mac OS X 10.5.8, when Windows ...) + - samba <unfixed> (unknown) TODO: check + NOTE: details are unknown CVE-2009-2812 (Launch Services in Apple Mac OS X 10.5.8 does not properly recognize ...) NOT-FOR-US: Apple Mac OS X CVE-2009-2811 (Incomplete blacklist vulnerability in Launch Services in Apple Mac OS ...) @@ -1485,6 +1487,9 @@ RESERVED CVE-2009-2807 (Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS ...) TODO: check + - cupsys <removed> + - cups <unfixed> + NOTE: details are unknown CVE-2009-2806 RESERVED CVE-2009-2805 (Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.8 ...)