Secure testing commits - Dec 2009 - r13593 - data/CVE

Author: jmm-guest
Date: 2009-12-18 17:41:17 +0000 (Fri, 18 Dec 2009)
New Revision: 13593

Modified:
   data/CVE/list
Log:
openjdk fixed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-12-18 17:31:26 UTC (rev 13592)
+++ data/CVE/list	2009-12-18 17:41:17 UTC (rev 13593)
@@ -1282,27 +1282,27 @@
 	- sun-java6 <not-affected> (a problem in code that is unused on
non-windows platforms)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=530114
 CVE-2009-3884 (The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update
22 ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3883 (Multiple unspecified vulnerabilities in the Windows Pluggable
Look and ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3882 (Multiple unspecified vulnerabilities in the Swing implementation
in ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3881 (Sun Java SE 5.0 before Update 22 and 6 before Update 17, and
OpenJDK, ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3880 (The Abstract Window Toolkit (AWT) in Java Runtime Environment
(JRE) in ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3879 (Multiple unspecified vulnerabilities in the (1) X11 and (2) ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3878 (Buffer overflow in Sun Java System Web Server 7.0 Update 6 has
...)
@@ -1313,19 +1313,19 @@
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 	TODO: check
 CVE-2009-3876 (Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0
before ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3875 (The MessageDigest.isEqual function in Java Runtime Environment
(JRE) ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3874 (Integer overflow in the JPEGImageReader implementation in the
ImageI/O ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3873 (The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before
Update ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3872 (Unspecified vulnerability in the JPEG JFIF Decoder in Sun Java
SE in ...)
@@ -1333,11 +1333,11 @@
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3871 (Heap-based buffer overflow in the setBytePixels function in the
...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3869 (Stack-based buffer overflow in the setDiffICM function in the
Abstract ...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3868 (Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6
before ...)
@@ -1730,7 +1730,7 @@
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3728 (Directory traversal vulnerability in the ICC_Profile.getInstance
...)
-	- openjdk-6 <unfixed> (medium; bug #560908)
+	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3727 (Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.3,
...)
@@ -6284,6 +6284,7 @@
 	- nss 3.12.3-1 (low; bug #539895)
 	- openssl 0.9.8k-4 (low; bug #539899)
 	- gnutls26 2.4.2-5 (low; bug #539901)
+        - openjdk-6 6b17~pre3-1
 	- gnutls13 <removed>
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 <no-dsa> (Non-free not supported)