/[secure-testing]/data/ospu-candidates.txt
ViewVC logotype

Diff of /data/ospu-candidates.txt

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 12571 by derevko-guest, Tue Aug 11 20:45:32 2009 UTC revision 13932 by jmm-guest, Wed Jan 27 18:34:28 2010 UTC
# Line 3  but which could be fixed in a stable poi Line 3  but which could be fixed in a stable poi
3  it. If someone wants to address these, please add a note about it  it. If someone wants to address these, please add a note about it
4  and get in contact with debian-release@lists.debian.org  and get in contact with debian-release@lists.debian.org
5    
6    
7    --
8    
9    acidbase (CVE-2009-4590, CVE-2009-4591, CVE-2009-4592)
10    
11  --  --
12    
13  asterisk (CVE-2009-0041)  asterisk (CVE-2009-0041)
14  #513413  #513413
15  notified maintainer  notified maintainer
16    
17  CVE-2008-3903  asterisk (CVE-2008-3903)
18  #522528  #522528
19  notified maintainer  notified maintainer
20    
# Line 21  notified maintainer Line 26  notified maintainer
26    
27  --  --
28    
29    babel (CVE-2009-3736)
30    #559843
31    notified maintainer
32    
33    --
34    
35    backuppc (CVE-2009-3369)
36    #542218
37    notified maintainer
38    
39    --
40    
41  bugzilla (CVE-2009-0481 to CVE-2009-0485)  bugzilla (CVE-2009-0481 to CVE-2009-0485)
42  notified maintainer  notified maintainer
43    
44  --  --
45    
46    buildbot (CVE-2009-2959, CVE-2009-2967)
47    #543822
48    notified maintainer
49    
50    --
51    
52    centerim (CVE-2008-4776)
53    #559782
54    
55    --
56    
57  compiz-fusion-plugins-main (CVE-2008-6514)  compiz-fusion-plugins-main (CVE-2008-6514)
58  notified maintainer  notified maintainer
59    
# Line 37  notified maintainer Line 65  notified maintainer
65    
66  --  --
67    
68    cups (CVE-2009-3553)
69    #557740
70    maintainer notified in initial bug report
71    
72    --
73    
74    devil (CVE-2009-3994)
75    #560080
76    notified maintainer
77    
78    --
79    
80    dopewars (CVE-2009-3591)
81    #550913
82    notified maintainer
83    
84    --
85    
86    dstat (CVE-2009-3894)
87    http://svn.rpmforge.net/svn/trunk/tools/dstat/ChangeLog
88    notified maintainer
89    
90    dstat (CVE-2009-4081)
91    #559667
92    notified maintainer
93    
94    --
95    
96  evolution (CVE-2009-1631)  evolution (CVE-2009-1631)
97  #526409  #526409
98  notified maintainer through initial bugreport  notified maintainer through initial bugreport
# Line 45  notified maintainer through initial bugr Line 101  notified maintainer through initial bugr
101    
102  firebird2.0 (CVE-2009-2620)  firebird2.0 (CVE-2009-2620)
103  #539477  #539477
104    notified maintainer
105    
106    --
107    
108    glib2.0 (CVE-2009-3289)
109    https://bugzilla.gnome.org/show_bug.cgi?id=593406
110    notified maintainer
111    
112    --
113    
114    libgnucrypto-java (CVE-2008-5659)
115    #559789
116    
117  --  --
118    
# Line 54  notified maintainer Line 122  notified maintainer
122    
123  --  --
124    
125    gri (no CVE)
126    fixed in gri 2.12.18-1:
127    "Improve security when creating temporary files."
128    notified maintainer
129    
130    --
131    
132    gupnp (CVE-2009-2174)
133    #534594
134    notified maintainer
135    
136    --
137    
138    htmldoc (CVE-2009-3050)
139    #537637
140    notified maintainer through initial bugreport
141    
142    --
143    
144    hypre (CVE-2009-3736)
145    #559834
146    notified maintainer
147    
148    --
149    
150    kde4libs (CVE-2009-2702)
151    #546218
152    notified maintainer
153    
154    --
155    
156  kfreebsd-6  kfreebsd-6
157  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]
158  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc
# Line 87  notified maintainer through initial bugr Line 186  notified maintainer through initial bugr
186    
187  --  --
188    
189    libpam-ssh (CVE-2009-1273)
190    #535877
191    maintainer notified through initial bug report, said he would work on an update
192    
193    --
194    
195  libpng (CVE-2009-2042)  libpng (CVE-2009-2042)
196  #533676  #533676
197  notified maintainer  notified maintainer
# Line 104  notified maintainer and release team Line 209  notified maintainer and release team
209    
210  --  --
211    
212    maradns
213    http://maradns.org/download/maradns-1.4.02-parse_segfault.patch
214    notified maintainer
215    
216    --
217    
218  memcached (CVE-2009-1255)  memcached (CVE-2009-1255)
219  notified maintainer  notified maintainer
220    
# Line 116  orphaned Line 227  orphaned
227    
228  --  --
229    
230    movabletype-opensource (CVE-2009-2492)
231    #537935
232    notified maintainer
233    
234    --
235    
236  mpg123 (CVE-2009-1301)  mpg123 (CVE-2009-1301)
237  notified maintainer  notified maintainer
238    
239  --  --
240    
241    neon27 (CVE-2009-2474)
242    #542926
243    notified maintainer
244    
245    --
246    
247    neon26 (CVE-2009-2474)
248    #542926
249    notified maintainer
250    
251    --
252    
253    network-manager-applet (CVE-2009-4144)
254    #560067
255    notified maintainer through initial bugreport
256    
257    CVE-2009-4145
258    #563371
259    notified maintainer through initial bugreport
260    
261    --
262    
263    ntop (CVE-2009-2732)
264    #543312
265    notified maintainer through initial bugreport
266    
267    --
268    
269    postfix (CVE-2009-2939)
270    notified maintainer
271    
272    --
273    
274  squid (CVE-2009-0801)  squid (CVE-2009-0801)
275  #521053  #521053
276    
# Line 131  squid3 (CVE-2009-0801) Line 281  squid3 (CVE-2009-0801)
281    
282  --  --
283    
284  stardict (CVE-2009-2260)  t-prot (CVE-2009-4404)
 #534731  
 notified maintainer  
285    
286  --  --
287    
# Line 142  Noah will see to it. Line 290  Noah will see to it.
290    
291  --  --
292    
293    ocsinventory-server (CVE-2009-3040, CVE-2009-3042, CVE-2009-1443)
294    #541995
295    notified maintainer
296    
297    --
298    
299    open-iscsi (CVE-2009-1297)
300    notified maintainer in initial bug report
301    
302    --
303    
304  openldap  openldap
305  #253838  #253838
306  notified maintainer  notified maintainer
307    
308  --  --
309    
310    overkill (no CVE yet)
311    #549310
312    
313    --
314    
315    owl (CVE-2009-0363)
316    #515118
317    notified maintainer
318    
319    --
320    
321  pam (CVE-2009-0579)  pam (CVE-2009-0579)
322  #514437  #514437
323  asked maintainer in mail  asked maintainer in mail
324    
325  --  --
326    
327    pidgin (CVE-2009-1889, CVE-2009-3083, CVE-2009-3084, CVE-2009-3085)
328    #535790
329    http://developer.pidgin.im/ticket/9483
330    http://developer.pidgin.im/viewmtn/revision/info/9bac0a540156fb1848eedd61c8630737dee752c7
331    notified maintainer
332    
333    --
334    
335  pptp-linux (no CVE)  pptp-linux (no CVE)
336  #523476  #523476
337  Ola will prepare a fix in a point update  Ola will prepare a fix in a point update
338    
339  --  --
340    
341    puppet (CVE-2009-3564)
342    #551073
343    notified maintainer in initial bug report
344    
345    --
346    
347    python-4suite (CVE-2009-3560, CVE-2009-3720)
348    #560914
349    notified maintainer
350    
351    --
352    
353    python-docutils
354    #560755
355    notified maintainer
356    
357    --
358    
359    rails (CVE-2009-3086)
360    bug #545063
361    notified maintainer
362    
363    --
364    
365  slim (CVE-2009-1756)  slim (CVE-2009-1756)
366  bug #529306  bug #529306
367  Maintainer notified through followup in #529306  Maintainer notified through followup in #529306
368    
369  --  --
370    
371  smarty (CVE-2009-1669)  sqlite
372  #529810  #566326
 http://groups.google.com/group/smarty-svn/browse_thread/thread/b2da2e5d1ef8b462  
 notified maintainer  
373    
374  --  --
375    
# Line 179  notified maintainer Line 379  notified maintainer
379    
380  --  --
381    
382  texlive-bin (CVE-2009-1284)  udev (#462655)
383  #520920  notified maintainer
 https://bugzilla.redhat.com/show_bug.cgi?id=492136  
384    
385  --  --
386    
387  udev (#462655)  planet (CVE-2009-2937)
388  notified maintainer  bug #546178
389    notified maintainer through initial bugreport
390    
391  --  --
392    
# Line 200  xemacs21 (CVE-2008-2142) Line 400  xemacs21 (CVE-2008-2142)
400  bug #480877  bug #480877
401  notified maintainer  notified maintainer
402    
403    xemacs21 (CVE-2009-2688)
404    #540470
405    Patches at https://bugzilla.redhat.com/show_bug.cgi?id=511994
406    notified maintainer
407    
408  --  --
409    
410  xen-3 (CVE-2008-4993)  xen-3 (CVE-2008-4993)
# Line 208  notified maintainer Line 413  notified maintainer
413    
414  --  --
415    
416    xerces-c2 (CVE-2009-1885)
417    #541986
418    notified maintainer
419    
420    --
421    
422  xfig  xfig
423  25_mkstemp added in 1:3.2.5.a-1  25_mkstemp added in 1:3.2.5.a-1
424  notified maintainer  notified maintainer
425    
426    CVE-2009-4228/CVE-2009-4227
427    #559274)
428    https://bugzilla.redhat.com/show_bug.cgi?id=543905
429    
430    --
431    
432    xmp (CVE-2007-6731, CVE-2007-6732)
433    #546730
434    notified maintainer
435    
436    --
437    
438    xserver-xorg (no CVE)
439    #555308
440    
441  --  --
442    
443  ziproxy (CVE-2009-0804)  ziproxy (CVE-2009-0804)
444  #521051  #521051
445    notified maintainer
446    
447    --
448    
449    zope2.10 (no CVE)
450    https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
Legend:
Removed from v.12571  
changed lines
  Added in v.13932
  ViewVC Help
Powered by ViewVC 1.1.5