Author: gilbert-guest
Date: 2010-02-28 22:14:07 +0000 (Sun, 28 Feb 2010)
New Revision: 14164
Modified:
data/CVE/list
Log:
bugs submitted for python and openldap issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-02-28 21:55:47 UTC (rev 14163)
+++ data/CVE/list 2010-02-28 22:14:07 UTC (rev 14164)
@@ -8107,6 +8107,7 @@
CVE-2009-2408 (Mozilla Network Security Services (NSS) before 3.12.3, Firefox
before ...)
{DSA-1874-1}
- nss 3.12.3-1 (medium; bug #539934)
+ - openldap <unfixed> (bug #572005)
CVE-2009-2651 (main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows
remote ...)
- asterisk 1:1.6.2.0~dfsg~rc1-1 (low; bug #539473)
[etch] - asterisk <not-affected> (Vulnerable code not present)
@@ -16197,6 +16198,8 @@
- dia 0.96.1-7.1 (low; bug #504251)
[etch] - dia <no-dsa> (Minor issue, only vulnerable when called from
certain dir)
CVE-2008-5983 (Untrusted search path vulnerability in the PySys_SetArgv API
function ...)
+ - python3.1 <unfixed> (low)
+ - python2.6 <unfixed> (low; bug #572010)
- python2.5 <unfixed> (low)
[etch] - python2.5 <no-dsa> (Minor issue)
[lenny] - python2.5 <no-dsa> (Minor issue)
@@ -16206,6 +16209,7 @@
NOTE: I suppose the behaviour will be changed in a future Python release, but
NOTE: a backport has a significant risk of breakage for little gain. If a
NOTE: proper upstream patch should be available, this can be re-evaluated
+ NOTE: http://bugs.python.org/issue5753
CVE-2008-5982 (Format string vulnerability in BMC PATROL Agent before 3.7.30
allows ...)
NOT-FOR-US: BMC PATROL Agent
CVE-2009-0323 (Multiple stack-based buffer overflows in W3C Amaya Web Browser
10.0 ...)