Author: pedrib-guest
Date: 2010-01-25 19:37:42 +0000 (Mon, 25 Jan 2010)
New Revision: 13916
Modified:
data/CVE/list
Log:
fixed latent issues with phpgroupware, kdelibs and pygresql
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-01-25 15:37:20 UTC (rev 13915)
+++ data/CVE/list 2010-01-25 19:37:42 UTC (rev 13916)
@@ -9645,6 +9645,7 @@
- qt4-x11 4:4.5.2-1
[lenny] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
[etch] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
+ - kdelibs 3.5.10.dfsg.1-2.1 (medium; bug #534949)
CVE-2009-1697 (CRLF injection vulnerability in WebKit in Apple Safari before
4.0, ...)
{DSA-1950-1}
- webkit 1.1.15.2-1 (medium; bug #535793)
@@ -39674,6 +39675,7 @@
- mahara 1.0.5-2 (bug #504253)
[lenny] - mahara 1.0.4-3
[etch] - phpgroupware <not-affected> (bug #504255; Vulnerable code not
used)
+ - phpgroupware 0.9.16.012+dfsg-9 (medium; bug #504255)
- egroupware <not-affected> (bug #504283; Vulnerable code not used)
CVE-2007-3214 (SQL injection vulnerability in style.php in e-Vision CMS 2.02
and ...)
NOT-FOR-US: e-Vision CMS
@@ -44323,6 +44325,7 @@
CVE-2007-1323
REJECTED
{DTSA-38-1}
+ NOTE: replaced by both CVE-2007-5729 and CVE-2007-5730
CVE-2007-1322 (QEMU 0.8.2 allows local users to halt a virtual machine by
executing ...)
{DSA-1284-1 DTSA-38-1 DTSA-133-1}
- qemu 0.9.0-2 (bug #424070)
@@ -58456,6 +58459,7 @@
- postgresql 7.5.4 (medium; bug #368645)
- postgresql-7.4 1:7.4.13-1 (medium)
- postgresql-8.1 8.1.4-1 (medium)
+ - pygresql 3.8-1.1 (medium)
[sarge] - pygresql <not-affected> (Already includes proper quoting)
NOTE: Beginning with version 7.5.4, postgresql is a transition
NOTE: package which does not contain actual code. That''s why