Author: gilbert-guest
Date: 2010-08-03 18:12:04 +0000 (Tue, 03 Aug 2010)
New Revision: 15118
Modified:
data/CVE/list
Log:
new pam/bind issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-08-03 17:57:30 UTC (rev 15117)
+++ data/CVE/list 2010-08-03 18:12:04 UTC (rev 15118)
@@ -2899,7 +2899,7 @@
CVE-2010-1778 (Cross-site scripting (XSS) vulnerability in Apple Safari before
5.0.1 ...)
TODO: check
CVE-2010-1777 (Buffer overflow in Apple iTunes before 9.2.1 allows remote
attackers ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2010-1776
RESERVED
CVE-2010-1775 (Race condition in Passcode Lock in Apple iOS before 4 on the
iPhone ...)
@@ -5773,7 +5773,7 @@
CVE-2010-0833 (The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before
build ...)
NOT-FOR-US: Likewise
CVE-2010-0832 (pam_motd (aka the MOTD module) in libpam-modules before ...)
- TODO: check
+ - pam <not-affected> (flaw in ubuntu-specific changes to the package)
CVE-2010-0831 (Directory traversal vulnerability in the extract_jar function in
...)
- fastjar 2:0.98-3 (low)
[lenny] - fastjar <no-dsa> (Minor issue)
@@ -7685,7 +7685,8 @@
CVE-2010-0214
RESERVED
CVE-2010-0213 (BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has
a ...)
- TODO: check
+ - bind9 9.7.1.dfsg.P2
+ [lenny] - bind9 <not-affected> (vulnerability introduced in 9.7.1)
CVE-2010-0212 (OpenLDAP 2.4.22 allows remote attackers to cause a denial of
service ...)
{DSA-2077-1}
- openldap 2.4.23-1