[Secure-testing-commits] r14014 - data/CVE

Joey Hess Wed, 03 Feb 2010 01:14:36 -0800

Author: joeyh
Date: 2010-02-03 09:14:20 +0000 (Wed, 03 Feb 2010)
New Revision: 14014


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-02-03 06:58:06 UTC (rev 14013)
+++ data/CVE/list       2010-02-03 09:14:20 UTC (rev 14014)
@@ -4752,6 +4752,7 @@
        NOTE: http://mahara.org/interaction/forum/topic.php?id=1169
 CVE-2009-3297 [mount race conditions]
        RESERVED
+       {DSA-1989-1}
        - fuse 2.8.1-1.2 (bug #567633)
        - samba <unfixed> (bug #567554)
        NOTE: https://bugzilla.samba.org/show_bug.cgi?id=6853
@@ -7121,6 +7122,7 @@
        [etch] - zodb <not-affected> (The vulnerability was introduced in ZODB 
3.8)
        [lenny] - zodb <not-affected> (The vulnerability was introduced in ZODB 
3.8)
 CVE-2009-2700 (src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x 
does not ...)
+       {DSA-1988-1}
        - qt4-x11 4:4.5.3-1 (medium; bug #545793)
        [etch] - qt4-x11 <not-affected> (QSsl* classes were introduced in Qt 
4.3)
 CVE-2009-2699 (The Solaris pollset feature in the Event Port backend in ...)
@@ -9831,7 +9833,7 @@
 CVE-2009-1726 (Heap-based buffer overflow in ColorSync in Apple Mac OS X 
10.4.11 and ...)
        NOT-FOR-US: ColorSync in Apple Mac OS X
 CVE-2009-1725 (WebKit in Apple Safari before 4.0.2, as used on iPhone OS 
before 3.1, ...)
-       {DSA-1950-1}
+       {DSA-1988-1 DSA-1950-1}
        - webkit 1.1.13-1 (medium; bug #538346)
        - qt4-x11 4:4.5.2-2 (medium; bug #538347)
        [etch] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
@@ -9872,18 +9874,19 @@
        - webkit 1.1.12-1 (low; bug #535793)
        NOTE: http://trac.webkit.org/changeset/36359
 CVE-2009-1713 (The XSLT functionality in WebKit in Apple Safari before 4.0 
does not ...)
+       {DSA-1988-1}
        - webkit 1.0.1-4 (medium; bug #535793)
        - qt4-x11 4:4.5.2-2
        [etch] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
        NOTE: http://trac.webkit.org/changeset/34533
 CVE-2009-1712 (WebKit in Apple Safari before 4.0 does not prevent remote 
loading of ...)
-       {DSA-1950-1}
+       {DSA-1988-1 DSA-1950-1}
        - webkit 1.1.12-1 (medium; bug #535793)
        - qt4-x11 4:4.5.2-2
        [etch] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
        NOTE: http://trac.webkit.org/changeset/41568
 CVE-2009-1711 (WebKit in Apple Safari before 4.0 does not properly initialize 
memory ...)
-       {DSA-1950-1}
+       {DSA-1988-1 DSA-1950-1}
        - webkit 1.1.12-1 (medium; bug #535793)
        NOTE: http://trac.webkit.org/changeset/36918
        - qt4-x11 4:4.5.2-1
@@ -9919,11 +9922,12 @@
 CVE-2009-1700 (The XSLT implementation in WebKit in Apple Safari before 4.0, 
iPhone ...)
        - webkit 1.1.12-1 (low; bug #535793)
 CVE-2009-1699 (The XSL stylesheet implementation in WebKit in Apple Safari 
before ...)
+       {DSA-1988-1}
        - webkit 1.0.1-4 (medium; bug #535793)
        - qt4-x11 4:4.5.2-2
        [etch] - qt4-x11 <not-affected> (QTWebkit was introduced in 4.4)
 CVE-2009-1698 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, 
and ...)
-       {DSA-1950-1 DSA-1868-1 DSA-1867-1}
+       {DSA-1988-1 DSA-1950-1 DSA-1868-1 DSA-1867-1}
        - webkit 1.1.5-1 (medium; bug #534946)
        NOTE: http://trac.webkit.org/changeset/42081
        - qt4-x11 4:4.5.2-1
@@ -9955,7 +9959,7 @@
        [lenny] - webkit <not-affected> (Vulnerable code not present)
        NOTE: http://trac.webkit.org/changeset/32791
 CVE-2009-1690 (Use-after-free vulnerability in WebKit, as used in Apple Safari 
before ...)
-       {DSA-1950-1 DSA-1868-1 DSA-1867-1}
+       {DSA-1988-1 DSA-1950-1 DSA-1868-1 DSA-1867-1}
        - webkit 1.1.5-1 (medium; bug #534946)
        NOTE: http://trac.webkit.org/changeset/42532
        - kdelibs 4:3.5.10.dfsg.1-2.1 (medium; bug #534952)
@@ -9970,7 +9974,7 @@
        - webkit 1.1.12-1 (low; bug #535793)
        [lenny] - webkit <not-affected> (Vulnerable code not present)
 CVE-2009-1687 (The JavaScript garbage collector in WebKit in Apple Safari 
before 4.0, ...)
-       {DSA-1950-1 DSA-1868-1 DSA-1867-1}
+       {DSA-1988-1 DSA-1950-1 DSA-1868-1 DSA-1867-1}
        - webkit 1.1.5-1 (medium; bug #534946)
        - kdelibs 4:3.5.10.dfsg.1-2.1 (bug #534952)
        - kde4libs 4:4.3.0-1
@@ -12620,7 +12624,7 @@
        {DSA-1784-1}
        - freetype 2.3.9-4.1 (medium; bug #524925)
 CVE-2009-0945 (Array index error in the insertItemBefore method in WebKit, as 
used in ...)
-       {DSA-1950-1 DSA-1866-1}
+       {DSA-1988-1 DSA-1950-1 DSA-1866-1}
        - qt4-x11 4:4.5.2-1 (medium; bug #532718)
        [etch] - qt4-x11 <not-affected> (webkit support introduced in version 
4.4)
        - webkit 1.1.5-1 (medium; bug #532724; bug #532725)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r14014 - data/CVE

Reply via email to