Author: jmm-guest Date: 2009-10-02 23:23:42 +0000 (Fri, 02 Oct 2009) New Revision: 12923 Modified: data/CVE/list Log: more updates on point updates Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-10-02 23:18:07 UTC (rev 12922) +++ data/CVE/list 2009-10-02 23:23:42 UTC (rev 12923) @@ -111,6 +111,8 @@ - xmltooling 1.2.2-1 - opensaml <removed> - shibboleth-sp <removed> + [lenny] - opensaml <no-dsa> (Minor issue) + TODO: next point update: [lenny] - opensaml 2.0-2+lenny1 CVE-2009-3473 (IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege ...) NOT-FOR-US: IBM DB2 CVE-2009-3472 (IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows ...) @@ -210,12 +212,11 @@ - libfwbuilder <unfixed> (low) [lenny] - libfwbuilder <not-affected> (Introduced in 3.0.4) [etch] - libfwbuilder <not-affected> (Introduced in 3.0.4) -CVE-2009-XXXX [Correctly honor the "use" attribute of <KeyDescriptor> SAML metadata] - - opensaml <unfixed> - [lenny] - opensaml <no-dsa> (Minor issue) - TODO: next point update: [lenny] - opensaml 2.0-2+lenny1 CVE-2009-XXXX [RT: XSS security problem in custom field display] - request-tracker3.8 3.8.5-1 (bug #546829) + - request-tracker3.6 3.6.9-1 + [lenny] - request-tracker3.6 <no-dsa> (Minor issue) + TODO: next point update: [lenny] - request-tracker3.6 3.6.7-5+lenny2 CVE-2009-3430 (SQL injection vulnerability in login.php in Allomani Mobile 2.5 allows ...) NOT-FOR-US: Allomani Mobile CVE-2009-3429 (Stack-based buffer overflow in Pirate Radio Destiny Media Player 1.61 ...)