perl/cgi-pm fixed

mapserver fixed


git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15815 e39458fd-73e7-0310-bf30-c45bca0a0e42

1 files changed, 5 insertions, 0 deletions

diff --git a/data/CVE/list b/data/CVE/list
index 1be0f6dd81..92e4c11f43 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1233,8 +1233,10 @@ CVE-2010-4413
 CVE-2010-4412 (Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta ...)
 	NOT-FOR-US: pfSense
 CVE-2010-4411 (Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote ...)
+	- perl 5.10.1-17 (bug #606995)
 	- libcgi-pm-perl <unfixed> (bug #606370)
 CVE-2010-4410 (CRLF injection vulnerability in the header function in (1) CGI.pm ...)
+	- perl 5.10.1-17 (bug #606995)
 	- libcgi-pm-perl 3.50-1 (bug #606370)
 	- libcgi-simple-perl <unfixed> (bug #606379)
 CVE-2010-4408 (Apache Archiva 1.0 through 1.0.3, 1.1 through 1.1.4, 1.2 through ...)
@@ -5696,6 +5698,7 @@ CVE-2010-2762 (The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka
 	- xulrunner <not-affected> (Only affects 3.6, only in experimental)
 	- iceweasel <not-affected> (Only affects 3.6, only in experimental)
 CVE-2010-2761 (The multipart_init function in (1) CGI.pm before 3.50 and (2) ...)
+	- perl 5.10.1-17 (bug #606995)
 	- libcgi-pm-perl 3.50-1 (bug #606370)
 	- libcgi-simple-perl <unfixed> (bug #606379)
 CVE-2010-2760 (Use-after-free vulnerability in the nsTreeSelection function in ...)
@@ -8586,6 +8589,8 @@ CVE-2010-1679
 	- dpkg 1.15.8.8
 CVE-2010-1678
 	RESERVED
+	- mapserver 5.6.5-2
+	NOTE: http://trac.osgeo.org/mapserver/ticket/3641
 CVE-2010-1677 (MHonArc 2.6.16 allows remote attackers to cause a denial of service ...)
 	- mhonarc <unfixed>
 CVE-2010-1676 (Heap-based buffer overflow in Tor before 0.2.1.28 and 0.2.2.x before ...)