Author: luk
Date: 2011-12-31 13:50:40 +0000 (Sat, 31 Dec 2011)
New Revision: 17938
Modified:
data/CVE/list
Log:
mark doctrine and cherokee as fixed in squeeze (pu), mark some old ones
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-12-31 12:48:26 UTC (rev 17937)
+++ data/CVE/list 2011-12-31 13:50:40 UTC (rev 17938)
@@ -8585,7 +8585,7 @@
NOTE:
http://repo.or.cz/w/vlc.git/commitdiff/cd929923ff49175a501bb3e9553a683bc42ff61c
CVE-2011-2190 (The generate_admin_password function in Cherokee before 1.2.99
uses ...)
- cherokee <unfixed> (low; bug #647205)
- [squeeze] - cherokee <no-dsa> (Minor issue)
+ [squeeze] - cherokee 1.0.8-5+squeeze1
[lenny] - cherokee <no-dsa> (Minor issue)
NOTE: http://code.google.com/p/cherokee/issues/detail?id=1212
CVE-2011-2188 (LuaExpat before 1.2.0 does not properly detect recursion during
entity ...)
@@ -10371,6 +10371,7 @@
CVE-2011-1522 (Multiple SQL injection vulnerabilities in the ...)
{DSA-2223-1}
- doctrine <unfixed> (bug #622674)
+ [squeeze] - doctrine 1.2.2-2+squeeze1
CVE-2010-4777
RESERVED
- perl <unfixed> (unimportant; bug #628836)
@@ -12117,7 +12118,7 @@
- kfreebsd-8 8.2-1 (low; bug #613312; bug #611476)
[squeeze] - kfreebsd-8 8.1+dfsg-8
[lenny] - kfreebsd-8 <no-dsa> (Not-supported in Lenny)
- - kfreebsd-7 <unfixed> (bug #613312)
+ - kfreebsd-7 <removed>
[lenny] - kfreebsd-7 <no-dsa> (Not supported in Lenny)
CVE-2011-1133 [xinha XSS mode param]
RESERVED
@@ -30898,7 +30899,7 @@
[etch] - python-xml <no-dsa> (minor issue)
[lenny] - python-xml 0.8.4-10.1+lenny1
- python2.5 2.5.4-3.1 (low; bug #560912)
- - python2.4 <unfixed> (low; bug #560913)
+ - python2.4 2.4.4-3etch3 (low; bug #560913)
- python-4suite 1.0.2-7.2 (low; bug #560914)
[etch] - python-4suite <no-dsa> (Minor issue)
[lenny] - python-4suite <no-dsa> (Minor issue)
@@ -31381,7 +31382,7 @@
[etch] - python-xml <no-dsa> (minor issue)
[lenny] - python-xml 0.8.4-10.1+lenny1
- python2.5 2.5.4-3.1 (low; bug #560912)
- - python2.4 <unfixed> (low; bug #560913)
+ - python2.4 2.4.4-3+etch3 (low; bug #560913)
- python2.6 2.6.4-4
- python-4suite 1.0.2-7.2 (low; bug #560914)
[etch] - python-4suite <no-dsa> (Minor issue)
@@ -52113,7 +52114,7 @@
NOT-FOR-US: BP Blog
CVE-2008-2553 (Cross-site scripting (XSS) vulnerability in Slashdot Like
Automated ...)
{DSA-1633-1}
- - slash <unfixed> (low; bug #484499)
+ - slash 2.2.6-8etch1 (low; bug #484499)
NOTE: See CVE-2008-2231
NOTE: maintainer wants to remove package from unstable and move to
experimental
CVE-2008-2552 (Unspecified vulnerability in the Service Tag Registry on Sun
Solaris ...)
@@ -55469,7 +55470,7 @@
[etch] - kfreebsd-5 <no-dsa> (KFreebsd not supported)
- kfreebsd-6 <removed>
[lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported)
- - kfreebsd-7 <unfixed> (bug #559107)
+ - kfreebsd-7 <removed> (bug #559107)
[lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported)
CVE-2008-1146 (A certain pseudo-random number generator (PRNG) algorithm that
uses ...)
NOT-FOR-US: OpenBSD