[Secure-testing-commits] r15255 - data/CVE

Thu, 02 Sep 2010 14:42:50 -0700 

Author: jmm-guest
Date: 2010-09-02 21:42:36 +0000 (Thu, 02 Sep 2010)
New Revision: 15255

Modified:
   data/CVE/list
Log:
fix glpng entry


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-09-02 19:30:28 UTC (rev 15254)
+++ data/CVE/list       2010-09-02 21:42:36 UTC (rev 15255)
@@ -31,7 +31,7 @@
 CVE-2010-3187 (Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows 
remote ...)
        NOT-FOR-US: IBM AIX
 CVE-2010-3186 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.13, and 
...)
-       TODO: check
+       NOT-FOR-US: WebSphere
 CVE-2010-3185
        RESERVED
 CVE-2010-3184
@@ -1006,11 +1006,11 @@
        - moodle <unfixed>
        TODO: check embedders
 CVE-2010-2794 (The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local 
users ...)
-       TODO: check
+       NOT-FOR-US: SPICE plugin for Firefox
 CVE-2010-2793
        RESERVED
 CVE-2010-2792 (Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for 
Firefox ...)
-       TODO: check
+       NOT-FOR-US: SPICE plugin for Firefox
 CVE-2010-2791 (mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on 
Unix, ...)
        - apache2 2.2.10-1 (low)
 CVE-2010-2790 (Multiple cross-site scripting (XSS) vulnerabilities in the 
formatQuery ...)
@@ -4332,14 +4332,14 @@
 CVE-2010-1520 (Cross-site scripting (XSS) vulnerability in logout.php in 
TaskFreak! ...)
        NOT-FOR-US: TaskFreak! Original multi user
 CVE-2010-1519 (Multiple integer overflows in glpng.c in glpng 1.45 allow ...)
-       TODO: check
+       - libglpng <unfixed> (low; bug filed)
+       [lenny] - libglpng <no-dsa> (Minor issue)
 CVE-2010-1518 (Array index error in the SetDLInfo method in the GIGABYTE 
Dldrv2 ...)
        NOT-FOR-US: GIGABYTE Dldrv2 ActiveX control
 CVE-2010-1517 (The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote 
attackers ...)
        NOT-FOR-US: GIGABYTE Dldrv2 ActiveX control
 CVE-2010-1516 (Multiple integer overflows in SWFTools 0.9.1 allow remote 
attackers to ...)
-       - libglpng <unfixed> (low; bug filed)
-       [lenny] - libglpng <no-dsa> (Minor issue)
+       NOT-FOR-US: SWFtools (were once packaged)
 CVE-2010-1515 (Multiple cross-site scripting (XSS) vulnerabilities in 
index.php in ...)
        NOT-FOR-US: TomatoCMS
 CVE-2010-1514 (Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and 
earlier ...)
@@ -8406,11 +8406,9 @@
 CVE-2010-0212 (OpenLDAP 2.4.22 allows remote attackers to cause a denial of 
service ...)
        {DSA-2077-1}
        - openldap 2.4.23-1 
-       NOTE: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
 CVE-2010-0211 (The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 
does not ...)
        {DSA-2077-1}
        - openldap 2.4.23-1
-       NOTE: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
 CVE-2010-0210
        RESERVED
 CVE-2010-0209 (Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, 
and ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to