Author: nion
Date: 2011-06-10 10:16:46 + (Fri, 10 Jun 2011)
New Revision: 16792
Modified:
data/DSA/list
Log:
DSA-2257-1 (vlc)
Modified: data/DSA/list
===
--- data/DSA/list 2011-06-10 08:27:46 UTC (rev 16791)
+++
Author: nion
Date: 2011-06-09 10:02:13 + (Thu, 09 Jun 2011)
New Revision: 16789
Modified:
data/CVE/list
Log:
sun-java6 june round of security bugs fixed in 6.26-1
Modified: data/CVE/list
===
--- data/CVE/list 2011-06-08
Author: nion
Date: 2011-06-08 10:19:46 + (Wed, 08 Jun 2011)
New Revision: 16786
Modified:
data/CVE/list
Log:
latest vlc issue doesnt affect lenny, i_track_id was introduced later
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2011-06-08 20:12:04 + (Wed, 08 Jun 2011)
New Revision: 16787
Modified:
data/CVE/list
Log:
vlc cveified
Modified: data/CVE/list
===
--- data/CVE/list 2011-06-08 10:19:46 UTC (rev 16786)
+++
Author: nion
Date: 2011-06-08 21:25:29 + (Wed, 08 Jun 2011)
New Revision: 16788
Modified:
data/CVE/list
Log:
openjdk/sun-jre bug reference
Modified: data/CVE/list
===
--- data/CVE/list 2011-06-08 20:12:04 UTC (rev
Author: nion
Date: 2011-06-07 23:22:59 + (Tue, 07 Jun 2011)
New Revision: 16784
Modified:
data/CVE/list
Log:
new vlc issue
Modified: data/CVE/list
===
--- data/CVE/list 2011-06-07 09:48:25 UTC (rev 16783)
+++
Author: nion
Date: 2011-06-03 23:34:15 + (Fri, 03 Jun 2011)
New Revision: 16767
Modified:
data/DSA/list
Log:
DSA-2254-1
Modified: data/DSA/list
===
--- data/DSA/list 2011-06-03 20:13:44 UTC (rev 16766)
+++ data/DSA/list
)
Completely fine, I already told upstream yesterday that it is very unlikely
that we will issue security updates for this.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted
Author: nion
Date: 2011-05-31 21:08:48 + (Tue, 31 May 2011)
New Revision: 16742
Modified:
data/CVE/list
data/DSA/list
Log:
billion laughs against various jabberds fixed
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2011-05-16 17:54:07 + (Mon, 16 May 2011)
New Revision: 16671
Modified:
org/security-frontdesk.2011.txt
Log:
add myself to schedule
Modified: org/security-frontdesk.2011.txt
===
---
Author: nion
Date: 2011-04-13 22:11:05 + (Wed, 13 Apr 2011)
New Revision: 16525
Modified:
data/CVE/list
data/DSA/list
Log:
vlc cveified
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-13 21:15:36 UTC (rev
Author: nion
Date: 2011-04-12 12:03:26 + (Tue, 12 Apr 2011)
New Revision: 16516
Modified:
data/CVE/list
data/DSA/list
Log:
update vls issue DSA-2218-1
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-12
Author: nion
Date: 2011-04-12 12:10:03 + (Tue, 12 Apr 2011)
New Revision: 16517
Modified:
data/DSA/list
Log:
fix typo
Modified: data/DSA/list
===
--- data/DSA/list 2011-04-12 12:03:26 UTC (rev 16516)
+++ data/DSA/list
Author: nion
Date: 2011-04-10 17:06:19 + (Sun, 10 Apr 2011)
New Revision: 16504
Modified:
data/CVE/list
Log:
CVE-2011-0997 fixed in isc-dhcp 4.1.1-P1-16.1
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-09
Author: nion
Date: 2011-04-10 17:16:38 + (Sun, 10 Apr 2011)
New Revision: 16505
Modified:
data/CVE/list
Log:
CVE-2011-1097 bug added
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-10 17:06:19 UTC (rev 16504)
+++
Author: nion
Date: 2011-04-10 23:59:52 + (Sun, 10 Apr 2011)
New Revision: 16506
Modified:
data/DSA/list
Log:
DSA-2217-1(dhcp3)/DSA-2216-1(isc-dhcp)
Modified: data/DSA/list
===
--- data/DSA/list 2011-04-10 17:16:38 UTC
Author: nion
Date: 2011-04-09 18:13:44 + (Sat, 09 Apr 2011)
New Revision: 16502
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
CVE-2011-1091 fixed in pidgin 2.7.11-1 (no-dsa)
new rsync issue (CVE-2011-1097)
Modified: data/CVE/list
Author: nion
Date: 2011-04-09 18:16:06 + (Sat, 09 Apr 2011)
New Revision: 16503
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2215-1 (gitolite)
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-09 18:13:44 UTC
Author: nion
Date: 2011-04-08 19:52:51 + (Fri, 08 Apr 2011)
New Revision: 16497
Modified:
data/DSA/list
Log:
DSA-2214-1 (ikiwiki)/DSA-2213-1 (x11-xserver-utils)
Modified: data/DSA/list
===
--- data/DSA/list 2011-04-08
Author: nion
Date: 2011-04-07 16:02:14 + (Thu, 07 Apr 2011)
New Revision: 16491
Modified:
data/CVE/list
Log:
tmux cveified, add bug for CVE-2011-0465
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-07 09:18:45 UTC
Author: nion
Date: 2011-04-07 19:49:08 + (Thu, 07 Apr 2011)
New Revision: 16492
Modified:
data/DSA/list
Log:
DSA-2212-1 (tmux)
Modified: data/DSA/list
===
--- data/DSA/list 2011-04-07 16:02:14 UTC (rev 16491)
+++
Author: nion
Date: 2011-04-06 14:07:21 + (Wed, 06 Apr 2011)
New Revision: 16483
Modified:
data/CVE/list
Log:
CVE-2011-0465 fixed in x11-xserver-utils 7.6+2, new drupal6-mod-tagadelic issue
Modified: data/CVE/list
===
---
Author: nion
Date: 2011-04-06 18:56:34 + (Wed, 06 Apr 2011)
New Revision: 16485
Modified:
data/CVE/list
Log:
track new isc-dhclient issue
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-06 17:20:09 UTC (rev 16484)
Author: nion
Date: 2011-04-05 22:38:01 + (Tue, 05 Apr 2011)
New Revision: 16479
Modified:
data/CVE/list
Log:
new tmux issue
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-04 21:15:19 UTC (rev 16478)
+++
Author: nion
Date: 2011-04-05 23:15:36 + (Tue, 05 Apr 2011)
New Revision: 16481
Modified:
data/CVE/list
Log:
new xrdb issue (CVE-2011-0465)
Modified: data/CVE/list
===
--- data/CVE/list 2011-04-05 22:59:20 UTC (rev
Author: nion
Date: 2011-02-19 20:37:31 + (Sat, 19 Feb 2011)
New Revision: 16203
Modified:
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
o/spu candidate magpierss
Modified: data/ospu-candidates.txt
===
---
Author: nion
Date: 2011-02-17 12:07:47 + (Thu, 17 Feb 2011)
New Revision: 16188
Modified:
data/CVE/list
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
CVE-2011-0420 no-dsa
Modified: data/CVE/list
===
---
Author: nion
Date: 2011-02-16 13:26:23 + (Wed, 16 Feb 2011)
New Revision: 16165
Modified:
data/DSA/list
Log:
errm we released :D thx adsb
Modified: data/DSA/list
===
--- data/DSA/list 2011-02-16 13:15:01 UTC (rev 16164)
Author: nion
Date: 2011-02-16 13:35:26 + (Wed, 16 Feb 2011)
New Revision: 16166
Modified:
data/CVE/list
data/ospu-candidates.txt
Log:
new feh tmp race, no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-16
Author: nion
Date: 2011-02-16 13:50:32 + (Wed, 16 Feb 2011)
New Revision: 16167
Modified:
data/CVE/list
Log:
update on feh issue
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-16 13:35:26 UTC (rev 16166)
+++
Author: nion
Date: 2011-02-16 21:11:32 + (Wed, 16 Feb 2011)
New Revision: 16179
Modified:
data/CVE/list
Log:
CVE-2011-0697/CVE-2011-0696 fixed in python-django 1.2.5-1
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2011-02-16 22:22:33 + (Wed, 16 Feb 2011)
New Revision: 16181
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2169-1 (telepath-gabble)
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-16
Author: nion
Date: 2011-02-16 22:29:16 + (Wed, 16 Feb 2011)
New Revision: 16182
Modified:
data/CVE/list
Log:
s/telepath/telepathy/
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-16 22:22:33 UTC (rev 16181)
+++
Author: nion
Date: 2011-02-15 23:54:10 + (Tue, 15 Feb 2011)
New Revision: 16156
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2164-1(shadow)
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-15 21:17:02 UTC (rev
Author: nion
Date: 2011-02-14 15:18:32 + (Mon, 14 Feb 2011)
New Revision: 16144
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2162-1 (openssl)
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-14 14:43:01 UTC
Author: nion
Date: 2011-02-14 15:39:17 + (Mon, 14 Feb 2011)
New Revision: 16145
Modified:
data/CVE/list
Log:
remove ejabberd tmp cve, got a cve id in the meantime
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-14
Author: nion
Date: 2011-02-14 18:32:15 + (Mon, 14 Feb 2011)
New Revision: 16148
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2163-1 (python-django)
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-14 18:11:59
Author: nion
Date: 2011-02-09 16:42:34 + (Wed, 09 Feb 2011)
New Revision: 16084
Modified:
data/CVE/list
Log:
new vlc issue fixed in 1.1.7-1 (CVE-2011-0531)
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-09
Author: nion
Date: 2011-02-09 16:48:36 + (Wed, 09 Feb 2011)
New Revision: 16085
Modified:
data/CVE/list
Log:
cveify vlc
Modified: data/CVE/list
===
--- data/CVE/list 2011-02-09 16:42:34 UTC (rev 16084)
+++ data/CVE/list
Author: nion
Date: 2011-01-20 16:06:17 + (Thu, 20 Jan 2011)
New Revision: 15933
Modified:
data/DSA/list
Log:
new dsa (2149-1)
Modified: data/DSA/list
===
--- data/DSA/list 2011-01-19 22:09:39 UTC (rev 15932)
+++
Author: nion
Date: 2011-01-16 10:25:24 + (Sun, 16 Jan 2011)
New Revision: 15904
Modified:
data/package-tags
Log:
add limited support note for memcached
Modified: data/package-tags
===
--- data/package-tags 2011-01-16
Author: nion
Date: 2011-01-16 01:06:01 + (Sun, 16 Jan 2011)
New Revision: 15888
Modified:
data/CVE/list
Log:
left git-core issue for lenny accidently fixed via spu
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2011-01-16 01:44:23 + (Sun, 16 Jan 2011)
New Revision: 15892
Modified:
data/CVE/list
Log:
CVE-2010-2934,CVE-2010-2812 are non issues. I got no idea why the upstream
commit claims that
the ping issue can be caused from a client. From what I see this is a code path
that
Author: nion
Date: 2011-01-14 18:47:15 + (Fri, 14 Jan 2011)
New Revision: 15850
Modified:
data/CVE/list
Log:
CVE-2009-5020 unimportant
Modified: data/CVE/list
===
--- data/CVE/list 2011-01-14 18:06:13 UTC (rev 15849)
Author: nion
Date: 2011-01-14 20:36:00 + (Fri, 14 Jan 2011)
New Revision: 15854
Modified:
data/CVE/list
Log:
CVE-2010-1152 is low if not unimportant, if you expose your memcached port to
an attacker you got way more serious issues
Modified: data/CVE/list
Author: nion
Date: 2011-01-14 21:03:15 + (Fri, 14 Jan 2011)
New Revision: 15855
Modified:
data/CVE/list
Log:
CVE-2010-{3394,3381,3376} no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2011-01-14 20:36:00 UTC (rev
Author: nion
Date: 2011-01-14 21:08:49 + (Fri, 14 Jan 2011)
New Revision: 15856
Modified:
data/CVE/list
Log:
CVE-2011-0007 non issue. you cant sent sigusr1 to pimd if you are not already
root
Modified: data/CVE/list
===
---
Author: nion
Date: 2011-01-14 21:48:18 + (Fri, 14 Jan 2011)
New Revision: 15862
Modified:
data/CVE/list
Log:
CVE-2010-4524 fixed in mhonarc 2.6.18-1
Modified: data/CVE/list
===
--- data/CVE/list 2011-01-14 21:40:56 UTC
Author: nion
Date: 2011-01-14 22:07:07 + (Fri, 14 Jan 2011)
New Revision: 15864
Modified:
data/CVE/list
Log:
CVE-2010-4000 fixed in gnome-shell 2.91.3-1
Modified: data/CVE/list
===
--- data/CVE/list 2011-01-14 21:48:52
Author: nion
Date: 2010-10-21 14:59:07 + (Thu, 21 Oct 2010)
New Revision: 15493
Modified:
data/CVE/list
Log:
CVE-2010-3095 fixed in mailscanner 4.79.11-2.1
Modified: data/CVE/list
===
--- data/CVE/list 2010-10-21
Author: nion
Date: 2010-09-13 12:42:48 + (Mon, 13 Sep 2010)
New Revision: 15317
Modified:
data/CVE/list
Log:
CVE-2010-2970 fixed in moin 1.9.3-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-09-13 09:20:14 UTC (rev
Author: nion
Date: 2010-08-07 01:30:58 + (Sat, 07 Aug 2010)
New Revision: 15145
Modified:
data/CVE/list
Log:
new lynx issue
Modified: data/CVE/list
===
--- data/CVE/list 2010-08-06 21:24:21 UTC (rev 15144)
+++
Author: nion
Date: 2010-08-01 14:46:45 + (Sun, 01 Aug 2010)
New Revision: 15091
Modified:
data/CVE/list
Log:
CVE-2010-2491 fixed in roundup 1.4.13-3.1
CVE-2010-2006 fixed in mydms 1.7.2+1.7.3-1.1
Modified: data/CVE/list
===
Author: nion
Date: 2010-07-31 14:26:07 + (Sat, 31 Jul 2010)
New Revision: 15079
Modified:
data/CVE/list
data/NMU/list
Log:
CVE-2010-1448, CVE-2010-1625, CVE-2009-4497 will be fixed in lxr-cvs
0.9.5+cvs20071020-1.1
CVE-2010-1738 looks like a dupe of CVE-2010-1448, asking for lxr
Author: nion
Date: 2010-08-01 01:10:51 + (Sun, 01 Aug 2010)
New Revision: 15085
Modified:
data/CVE/list
Log:
CVE-2010-1738 seems to be a dupe
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-31 22:46:38 UTC (rev
Author: nion
Date: 2010-08-01 01:17:44 + (Sun, 01 Aug 2010)
New Revision: 15086
Modified:
data/CVE/list
Log:
accidentally removed the dupe entry, not yet rejected
Modified: data/CVE/list
===
--- data/CVE/list 2010-08-01
Author: nion
Date: 2010-07-30 11:05:39 + (Fri, 30 Jul 2010)
New Revision: 15070
Modified:
data/CVE/list
data/NMU/list
Log:
CVE-2010-0825 fixed in xemacs21 21.4.22-3.1
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-07-30 11:30:39 + (Fri, 30 Jul 2010)
New Revision: 15071
Modified:
data/CVE/list
Log:
CVE-2010-0409 fixed in gmime2.2 2.2.25-1.1
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-30 11:05:39
Author: nion
Date: 2010-07-30 11:32:31 + (Fri, 30 Jul 2010)
New Revision: 15072
Modified:
data/CVE/list
Log:
#579087 fixed in prosody 0.7.0-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-30 11:30:39 UTC (rev
Author: nion
Date: 2010-07-30 11:39:51 + (Fri, 30 Jul 2010)
New Revision: 15073
Modified:
data/CVE/list
Log:
zabbix xss no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-30 11:32:31 UTC (rev 15072)
+++
Author: nion
Date: 2010-07-30 12:17:18 + (Fri, 30 Jul 2010)
New Revision: 15075
Modified:
data/CVE/list
Log:
CVE-2009-3560 and CVE-2009-3720 fixed in xmlrpc-c 1.06.27-1.1
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-07-29 21:45:46 + (Thu, 29 Jul 2010)
New Revision: 15067
Modified:
data/CVE/list
Log:
camserv has been removed from unstable
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-29 21:42:01 UTC
Author: nion
Date: 2010-07-27 14:31:04 + (Tue, 27 Jul 2010)
New Revision: 15030
Modified:
data/CVE/list
Log:
CVE-2010-2542 fixed in git-core 1:1.7.1-1.1, fix src-pkg name
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-07-26 16:09:12 + (Mon, 26 Jul 2010)
New Revision: 15023
Modified:
data/CVE/list
Log:
CVE-2010-2195, CVE-2010-2320 fixed in bozohttpd 20100621-1
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-07-25 18:14:05 + (Sun, 25 Jul 2010)
New Revision: 15022
Modified:
data/CVE/list
Log:
- CVE-2010-2490 fixed in mumble 1.2.2-4, bug has been assigned
- bozohttpd bug filed
- wget bug filed
- CVE-2010-1622 fixed in libspring-2.5-java 2.5.6.SEC02-1
-
Author: nion
Date: 2010-07-22 17:08:43 + (Thu, 22 Jul 2010)
New Revision: 15014
Modified:
data/CVE/list
Log:
incomplete fix for CVE-2009-4032
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-22 09:29:42 UTC (rev
Author: nion
Date: 2010-07-21 17:36:24 + (Wed, 21 Jul 2010)
New Revision: 15012
Modified:
data/CVE/list
Log:
two new mapserver issues, fixed in 5.6.4-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-21 09:15:25
Author: nion
Date: 2010-07-20 18:05:42 + (Tue, 20 Jul 2010)
New Revision: 15006
Modified:
data/embedded-code-copies
Log:
mksh embedds pdksh, partly dietlibc/eglibc, libbsd
update embedding information for libbsd-libbsd-arc4random-perl, thanks mira!
Modified: data/embedded-code-copies
Author: nion
Date: 2010-07-20 18:07:11 + (Tue, 20 Jul 2010)
New Revision: 15007
Modified:
data/embedded-code-copies
Log:
posh also embedds pdksh, also a fork
Modified: data/embedded-code-copies
===
---
Author: nion
Date: 2010-07-06 09:51:08 + (Tue, 06 Jul 2010)
New Revision: 14964
Modified:
data/CVE/list
data/embedded-code-copies
Log:
CVE-2010-2479 fixed in mahara 1.2.5-1, adding mahara/php-htmlpurifier to
embedded code copies
Modified: data/CVE/list
Author: nion
Date: 2010-07-06 22:29:42 + (Tue, 06 Jul 2010)
New Revision: 14967
Modified:
data/CVE/list
Log:
bogofilter and l2tp got cve ids, no-dsa for bogofilter
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-07-05 09:32:35 + (Mon, 05 Jul 2010)
New Revision: 14962
Modified:
data/CVE/list
Log:
bogofilter bug arrived, imho no dsa needed
Modified: data/CVE/list
===
--- data/CVE/list 2010-07-05 09:01:37
Author: nion
Date: 2010-06-29 16:28:55 + (Tue, 29 Jun 2010)
New Revision: 14924
Modified:
data/CVE/list
Log:
new syscp issue
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-29 09:14:44 UTC (rev 14923)
+++
Author: nion
Date: 2010-06-20 12:08:54 + (Sun, 20 Jun 2010)
New Revision: 14887
Modified:
data/CVE/list
Log:
adjusting impact of CVE-2010-1648/CVE-2010-1647, we usually use low for web
related issues with this kind of impact
Modified: data/CVE/list
Author: nion
Date: 2010-06-20 12:12:03 + (Sun, 20 Jun 2010)
New Revision: 14888
Modified:
data/CVE/list
Log:
CVE-2010-1938 fixed in opie 2.32.dfsg.1-0.2; low
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-20
Author: nion
Date: 2010-06-20 12:48:44 + (Sun, 20 Jun 2010)
New Revision: 14889
Modified:
data/CVE/list
data/NMU/list
Log:
CVE-2010-207{3,2} fixed in pyftpd 0.8.5
CVE-2010-0751 fixed in libnids 1.23-1.2
CVE-2009-4274 fixed in netpbm-free 2:10.0-12.2
Modified: data/CVE/list
Author: nion
Date: 2010-06-20 13:20:40 + (Sun, 20 Jun 2010)
New Revision: 14890
Modified:
data/CVE/list
Log:
- NFUs
- new webkit issue CVE-2010-2304
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-20 12:48:44 UTC
Author: nion
Date: 2010-06-16 20:40:43 + (Wed, 16 Jun 2010)
New Revision: 14877
Modified:
data/CVE/list
Log:
new samba issue (CVE-2010-2063), not affect testing/unstable
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-06-13 15:22:18 + (Sun, 13 Jun 2010)
New Revision: 14863
Modified:
data/CVE/list
Log:
CVE-2010-2092 fixed in cacti 0.8.7e-4
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-12 00:59:06 UTC
Author: nion
Date: 2010-06-10 12:07:02 + (Thu, 10 Jun 2010)
New Revision: 14846
Modified:
data/embedded-code-copies
Log:
lxr-cvs embedds lxr
Modified: data/embedded-code-copies
===
--- data/embedded-code-copies 2010-06-10
Author: nion
Date: 2010-06-10 12:18:11 + (Thu, 10 Jun 2010)
New Revision: 14847
Modified:
data/CVE/list
Log:
CVE-2010-1738 affects lxr and lxr-cvs
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-10 12:07:02 UTC
Author: nion
Date: 2010-06-10 14:05:56 + (Thu, 10 Jun 2010)
New Revision: 14848
Modified:
data/CVE/list
Log:
new moodle issues: CVE-2010-1619, CVE-2010-1618, CVE-2010-1617
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-06-10 14:08:33 + (Thu, 10 Jun 2010)
New Revision: 14849
Modified:
data/CVE/list
data/NMU/list
Log:
CVE-2010-2058 fixed in prewikka 1.0.0-1.1
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-06-10 14:09:47 + (Thu, 10 Jun 2010)
New Revision: 14850
Modified:
data/CVE/list
Log:
xpat2 non-issue has been fixed in 1.07-17
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-10 14:08:33
Author: nion
Date: 2010-06-10 14:56:08 + (Thu, 10 Jun 2010)
New Revision: 14851
Modified:
data/CVE/list
data/DSA/list
Log:
- more cleanup of old non-issues
- new mono issue CVE-2010-1459
- CVE-2010-1447 fixed in postgresql-8.4 8.4.4-1, added to DSA to mark as fixed
in stable as well
Author: nion
Date: 2010-06-10 15:58:35 + (Thu, 10 Jun 2010)
New Revision: 14852
Modified:
data/CVE/list
Log:
- CVE-2009-4855 fixed in typo3-src 4.2.5-1+lenny3
- NFU
- freeradius in debian doesn't seem to be affected by CVE-2010-0524
Modified: data/CVE/list
Author: nion
Date: 2010-06-10 18:09:37 + (Thu, 10 Jun 2010)
New Revision: 14854
Modified:
data/CVE/list
Log:
CVE-2010-2103 doesnt affect axis, lets check axis2c ;)
Modified: data/CVE/list
===
--- data/CVE/list
Author: nion
Date: 2010-06-05 16:59:25 + (Sat, 05 Jun 2010)
New Revision: 14808
Modified:
data/CVE/list
Log:
CVE-2010-0395 fixed in openoffice.org 1:3.2.1-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-06-05
Author: nion
Date: 2010-05-05 20:56:34 + (Wed, 05 May 2010)
New Revision: 14607
Modified:
data/CVE/list
Log:
remove todo, there will be a DSA for iscsitarget
Modified: data/CVE/list
===
--- data/CVE/list 2010-05-05
Author: nion
Date: 2010-04-19 13:05:39 + (Mon, 19 Apr 2010)
New Revision: 14524
Modified:
data/CVE/list
Log:
fetchmail DoS fixed in 6.3.16-2
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-19 00:13:11 UTC (rev
Author: nion
Date: 2010-04-19 13:08:46 + (Mon, 19 Apr 2010)
New Revision: 14525
Modified:
data/CVE/list
Log:
CVE-2010-116{0,1} fixed in nano 2.2.4-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-19 13:05:39 UTC
Author: nion
Date: 2010-04-19 13:26:06 + (Mon, 19 Apr 2010)
New Revision: 14526
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-19 13:08:46 UTC (rev 14525)
+++ data/CVE/list
Author: nion
Date: 2010-04-19 14:19:40 + (Mon, 19 Apr 2010)
New Revision: 14527
Modified:
data/CVE/list
Log:
zope cvefied
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-19 13:26:06 UTC (rev 14526)
+++
Author: nion
Date: 2010-04-11 11:21:27 + (Sun, 11 Apr 2010)
New Revision: 14449
Modified:
data/CVE/list
Log:
CVE-2010-1224 fixed in asterisk 1:1.6.2.6-1
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-11 11:20:56
Author: nion
Date: 2010-04-06 18:45:12 + (Tue, 06 Apr 2010)
New Revision: 14418
Modified:
data/CVE/list
Log:
new mahara issue (CVE-2010-0400)
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-06 18:44:33 UTC (rev
Author: nion
Date: 2010-04-05 18:49:36 + (Mon, 05 Apr 2010)
New Revision: 14409
Modified:
data/CVE/list
Log:
- new asterisk issue (CVE-2010-1224)
- NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-05 16:04:30
Author: nion
Date: 2010-04-03 12:53:25 + (Sat, 03 Apr 2010)
New Revision: 14388
Modified:
data/CVE/list
Log:
fix libnids cve id assignment mistake
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-03 12:27:31 UTC
Author: nion
Date: 2010-04-02 14:12:36 + (Fri, 02 Apr 2010)
New Revision: 14376
Modified:
data/CVE/list
Log:
CVE-2010-0750 doesnt affect us currently (policykit)
Modified: data/CVE/list
===
--- data/CVE/list 2010-04-02
Author: nion
Date: 2010-04-02 15:46:34 + (Fri, 02 Apr 2010)
New Revision: 14379
Modified:
data/CVE/list
Log:
cveified amsn (CVE-2010-0744), this issue affects us, corrected bug number
Modified: data/CVE/list
===
---
Author: nion
Date: 2010-03-31 08:20:48 + (Wed, 31 Mar 2010)
New Revision: 14360
Modified:
data/CVE/list
Log:
new moin XSS (CVE-2010-0828[)
Modified: data/CVE/list
===
--- data/CVE/list 2010-03-31 04:02:08 UTC (rev
201 - 300 of 578 matches
Mail list logo