Author: jmm-guest Date: 2010-06-09 21:23:22 +0000 (Wed, 09 Jun 2010) New Revision: 14837 Modified: data/CVE/list Log: beanstalk fixed cairo doesn''t need to be fixed in Lenny Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-06-09 21:14:17 UTC (rev 14836) +++ data/CVE/list 2010-06-09 21:23:22 UTC (rev 14837) @@ -381,7 +381,7 @@ CVE-2010-2061 RESERVED CVE-2010-2060 (The put command functionality in beanstalkd 1.4.5 and earlier allows ...) - - beanstalkd <unfixed> (bug #585162) + - beanstalkd 1.4.6-1 (unimportant; bug #585162) NOTE: Package description reads: "Beanstalkd is meant to be ran in a trusted network, NOTE: "as it has no authorisation/authentication mechanisms". So this is likely a non-issue CVE-2010-2059 (lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and ...) @@ -14009,8 +14009,9 @@ NOT-FOR-US: Cisco CVE-2009-2044 (Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to ...) - xulrunner <not-affected> (uses external cairo library) - - cairo 1.8.8-2 + - cairo 1.8.8-2 (unimportant) NOTE: http://cgit.freedesktop.org/cairo/commit/?id=2cf82eaf0d08e68b787bb0792da97e73d8d4ce38 + NOTE: Just a crasher CVE-2009-2043 (nsViewManager.cpp in Mozilla Firefox 3.0.2 through 3.0.10 allows ...) - xulrunner <unfixed> (unimportant) NOTE: Browser crashes not treated as security issues