Author: jmm-guest Date: 2010-06-07 22:57:20 +0000 (Mon, 07 Jun 2010) New Revision: 14828 Modified: data/CVE/list data/embedded-code-copies data/spu-candidates.txt Log: openssl spu fix Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-06-07 21:15:01 UTC (rev 14827) +++ data/CVE/list 2010-06-07 22:57:20 UTC (rev 14828) @@ -9741,6 +9741,7 @@ CVE-2009-3245 (OpenSSL before 0.9.8m does not check for a NULL return value from ...) - openssl 0.9.8m-1 (low; bug #575433) [lenny] - openssl <no-dsa> (minor issue) + TODO: next point update: [lenny] - openssl 0.9.8g-15+lenny7 CVE-2009-3244 (Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe ...) NOT-FOR-US: Adobe ShockWave Player CVE-2009-3243 (Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and ...) Modified: data/embedded-code-copies ==================================================================--- data/embedded-code-copies 2010-06-07 21:15:01 UTC (rev 14827) +++ data/embedded-code-copies 2010-06-07 22:57:20 UTC (rev 14828) @@ -200,8 +200,10 @@ lesstif (beware: two different lesstif APIs supported in one package, MOTIF 1.2 discarded upstream) - openmotif <unfixed> (embed) - - libxpm <unfixed> (embed; bug #575750) +libxpm + - lesstif <unfixed> (embed; bug #575750) + kerberized apps with BSD origin - krb4 <removed> (embed) - krb5 <unfixed> (embed) Modified: data/spu-candidates.txt ==================================================================--- data/spu-candidates.txt 2010-06-07 21:15:01 UTC (rev 14827) +++ data/spu-candidates.txt 2010-06-07 22:57:20 UTC (rev 14828) @@ -361,11 +361,6 @@ -- -openssl (CVE-2009-3245) -notified maintainer - --- - overkill (no CVE yet) #549310