Author: jmm-guest Date: 2009-10-21 19:31:17 +0000 (Wed, 21 Oct 2009) New Revision: 13059 Modified: data/CVE/list Log: xen-tools no-dsa new systemtap issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-10-21 18:43:24 UTC (rev 13058) +++ data/CVE/list 2009-10-21 19:31:17 UTC (rev 13059) @@ -628,7 +628,6 @@ NOT-FOR-US: Apple Safari CVE-2009-3454 REJECTED - NOT-FOR-US: Microsoft Internet Explorer CVE-2009-3453 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus ...) NOT-FOR-US: IBM Lotus Quickr CVE-2009-3452 (WebCoreModule.ashx in RADactive I-Load before 2008.2.5.0 allows remote ...) @@ -651,7 +650,9 @@ NOTE: https://roundup.ffmpeg.org/roundup/ffmpeg/issue1245 CVE-2009-XXXX [xen-tools: world readable disk image files] - xen-tools <unfixed> (low; bug #548909) + [lenny] - xen-tools <no-dsa> (Minor issue) TODO: request CVE id + NOTE: Maintainer will look into an update for stable CVE-2009-3446 (SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) ...) NOT-FOR-US: com_mytube component for Joomla! CVE-2009-3445 (Unspecified vulnerability in Code-Crafters Ability Mail Server before ...) @@ -2410,8 +2411,10 @@ NOT-FOR-US: XZero Community Classified CVE-2009-2912 (The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through ...) NOT-FOR-US: Sun Solaris -CVE-2009-2911 +CVE-2009-2911 [systemtap DoS] RESERVED + - systemtap <unfixed> (bug filed) + [lenny] - systemtap <not-affected> (Affected functionality only added in 1.0) CVE-2009-2910 [linux-2.6: 64-bit registers leaked to 32-bit processes] RESERVED - linux-2.6 <unfixed> (medium)