Author: joeyh
Date: 2010-01-26 09:14:27 +0000 (Tue, 26 Jan 2010)
New Revision: 13922
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-01-26 06:18:41 UTC (rev 13921)
+++ data/CVE/list 2010-01-26 09:14:27 UTC (rev 13922)
@@ -3248,7 +3248,7 @@
- evolution <unfixed>
NOTE: http://www.ocert.org/advisories/ocert-2009-013.html
CVE-2009-3720 (The updatePosition function in lib/xmltok_impl.c in libexpat in
Expat ...)
- {DSA-1921-1}
+ {DSA-1977-1 DSA-1921-1}
- expat 2.0.1-5 (low; bug #551936)
- w3c-libwww <removed> (low; bug #551938)
[etch] - w3c-libwww <no-dsa> (Minor issue, only used by fringe apps)
@@ -3731,7 +3731,7 @@
CVE-2009-3561 (Directory traversal vulnerability in Xerver HTTP Server 4.32
allows ...)
NOT-FOR-US: Xerver HTTP Server
CVE-2009-3560 (The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat
2.0.1, ...)
- {DSA-1953-2 DSA-1953-1}
+ {DSA-1977-1 DSA-1953-2 DSA-1953-1}
- expat 2.0.1-6 (low; bug #560901)
- w3c-libwww <removed>
[etch] - w3c-libwww <no-dsa> (Minor issue, only used by fringe apps)
@@ -24742,7 +24742,7 @@
CVE-2008-2317 (WebCore in Apple Safari does not properly perform garbage
collection ...)
NOT-FOR-US: Safari
CVE-2008-2316 (Integer overflow in _hashopenssl.c in the hashlib module in
Python ...)
- {DTSA-157-1}
+ {DSA-1977-1 DTSA-157-1}
- python2.5 2.5.2-11 (low; bug #493797)
- python2.4 <not-affected> (hashlib module introduced in python2.5)
CVE-2008-2315 (Multiple integer overflows in Python 2.5.2 and earlier allow
...)