Author: geissert Date: 2009-10-29 00:43:21 +0000 (Thu, 29 Oct 2009) New Revision: 13135 Modified: data/CVE/list Log: libhtml-parser-perl fixed in unstable marking sahana as itp (although it is a rfp, this should be discussed) vnc issue in qemu Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-10-29 00:30:26 UTC (rev 13134) +++ data/CVE/list 2009-10-29 00:43:21 UTC (rev 13135) @@ -466,7 +466,7 @@ - typo3-src 4.2.10-1 (medium; bug #552020) CVE-2009-3627 ["decode_entities()" Denial of Service] RESERVED - - libhtml-parser-perl <unfixed> (bug #552531) + - libhtml-parser-perl 3.64-1 (bug #552531) NOTE: http://secunia.com/advisories/37155/ CVE-2009-3626 [perl utf8 DoS] RESERVED @@ -474,7 +474,7 @@ [lenny] - perl <not-affected> (Vulnerable code not present) [etch] - perl <not-affected> (Vulnerable code not present) CVE-2009-3625 (Directory traversal vulnerability in www/index.php in Sahana 0.6.2.2 ...) - TODO: check + - sahana <itp> (bug #497414) CVE-2009-3624 [linux-2.6: keyring issue] RESERVED - linux-2.6 <unfixed> (low) @@ -507,6 +507,7 @@ CVE-2009-3617 (Format string vulnerability in the AbstractCommand::onAbort function ...) - aria2 1.6.2-1 (low) CVE-2009-3616 (Multiple use-after-free vulnerabilities in vnc.c in the VNC server in ...) + - qemu <unfixed> TODO: check CVE-2009-3615 (The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and ...) - pidgin 2.6.3-1