Author: jmm-guest
Date: 2010-06-09 21:23:22 +0000 (Wed, 09 Jun 2010)
New Revision: 14837

Modified:
   data/CVE/list
Log:
beanstalk fixed
cairo doesn't need to be fixed in Lenny


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-06-09 21:14:17 UTC (rev 14836)
+++ data/CVE/list       2010-06-09 21:23:22 UTC (rev 14837)
@@ -381,7 +381,7 @@
 CVE-2010-2061
        RESERVED
 CVE-2010-2060 (The put command functionality in beanstalkd 1.4.5 and earlier 
allows ...)
-       - beanstalkd <unfixed> (bug #585162)
+       - beanstalkd 1.4.6-1 (unimportant; bug #585162)
        NOTE: Package description reads: "Beanstalkd is meant to be ran in a 
trusted network,
        NOTE: "as it has no authorisation/authentication mechanisms". So this 
is likely a non-issue
 CVE-2010-2059 (lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x 
versions, and ...)
@@ -14009,8 +14009,9 @@
        NOT-FOR-US: Cisco
 CVE-2009-2044 (Mozilla Firefox 3.0.10 and earlier on Linux allows remote 
attackers to ...)
        - xulrunner <not-affected> (uses external cairo library)
-       - cairo 1.8.8-2
+       - cairo 1.8.8-2 (unimportant)
        NOTE: 
http://cgit.freedesktop.org/cairo/commit/?id=2cf82eaf0d08e68b787bb0792da97e73d8d4ce38
+        NOTE: Just a crasher
 CVE-2009-2043 (nsViewManager.cpp in Mozilla Firefox 3.0.2 through 3.0.10 
allows ...)
        - xulrunner <unfixed> (unimportant)
        NOTE: Browser crashes not treated as security issues


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to