From f6c3b285ecc84033e1b12a7918972122c51f95b6 Mon Sep 17 00:00:00 2001 From: Moritz Muehlenhoff Date: Fri, 14 Jan 2011 22:43:43 +0000 Subject: git spu upload zhcon issue is actually in libggi git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15866 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- data/CVE/list | 4 ++-- data/next-point-update.txt | 4 ++++ 2 files changed, 6 insertions(+), 2 deletions(-) (limited to 'data') diff --git a/data/CVE/list b/data/CVE/list index 6722b238fe..88d8a4dbba 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -391,8 +391,7 @@ CVE-2011-XXXX [Crash with long HOME environment variable] NOTE: Negligable privilege escalation NOTE: CVE ID requested CVE-2011-XXXX [Crash with long GGI_DISPLAY environment variable] - - zhcon (bug #608981) - TODO: check + - libggi (bug #608981) CVE-2011-0343 [syslog-ng log permissions] RESERVED - syslog-ng 3.1.3-2 (bug #608491) @@ -2882,6 +2881,7 @@ CVE-2010-3907 (Multiple integer overflows in real.c in the Real demuxer plugin i - vlc 1.1.3-1squeeze1 CVE-2010-3906 (Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier ...) - git-core + [lenny] - git-core (Will be fixed in spu) - git 1:1.7.2.3-2.2 CVE-2010-3905 (The password reset feature in the administrator interface for ...) - eucalyptus (bug #608289) diff --git a/data/next-point-update.txt b/data/next-point-update.txt index b4e624d2dd..8a869da0d0 100644 --- a/data/next-point-update.txt +++ b/data/next-point-update.txt @@ -29,6 +29,10 @@ CVE-2010-4410 [lenny] - libcgi-pm-perl 3.38-2lenny2 CVE-2010-4411 [lenny] - libcgi-pm-perl 3.38-2lenny2 +CVE-2010-3906 + [lenny] - git-core 1.5.6.5-3+lenny3.3 + + -- cgit v1.2.3