/[secure-testing]/data/spu-candidates.txt
ViewVC logotype

Diff of /data/spu-candidates.txt

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 12460 by white, Sun Aug 2 02:15:37 2009 UTC revision 14210 by jmm-guest, Sun Mar 7 18:59:14 2010 UTC
# Line 3  but which could be fixed in a stable poi Line 3  but which could be fixed in a stable poi
3  it. If someone wants to address these, please add a note about it  it. If someone wants to address these, please add a note about it
4  and get in contact with debian-release@lists.debian.org  and get in contact with debian-release@lists.debian.org
5    
6    
7    --
8    
9    acidbase (CVE-2009-4590, CVE-2009-4591, CVE-2009-4592)
10    notified maintainer
11    
12    --
13    
14    acl (CVE-2009-4411)
15    #499076
16    notified maintainer
17    
18  --  --
19    
20  asterisk (CVE-2009-0041)  asterisk (CVE-2009-0041)
21  #513413  #513413
22  notified maintainer  notified maintainer
23    
24  CVE-2008-3903  asterisk (CVE-2008-3903)
25  #522528  #522528
26  notified maintainer  notified maintainer
27    
# Line 21  notified maintainer Line 33  notified maintainer
33    
34  --  --
35    
36    babel (CVE-2009-3736)
37    #559843
38    notified maintainer
39    
40    --
41    
42  bugzilla (CVE-2009-0481 to CVE-2009-0485)  bugzilla (CVE-2009-0481 to CVE-2009-0485)
43  notified maintainer  notified maintainer
44    
45  --  --
46    
47    buildbot (CVE-2009-2959, CVE-2009-2967)
48    #543822
49    notified maintainer
50    
51    --
52    
53  compiz-fusion-plugins-main (CVE-2008-6514)  compiz-fusion-plugins-main (CVE-2008-6514)
54  notified maintainer  notified maintainer
55    
# Line 37  notified maintainer Line 61  notified maintainer
61    
62  --  --
63    
64    cups (CVE-2009-3553)
65    #557740
66    maintainer notified in initial bug report
67    Initial patch was incomplete; CVE-2010-0302
68    
69    
70    --
71    
72    devil (CVE-2009-3994)
73    #560080
74    notified maintainer
75    
76    --
77    
78    dopewars (CVE-2009-3591)
79    #550913
80    notified maintainer
81    
82    --
83    
84    dstat (CVE-2009-3894)
85    http://svn.rpmforge.net/svn/trunk/tools/dstat/ChangeLog
86    notified maintainer
87    
88    dstat (CVE-2009-4081)
89    #559667
90    notified maintainer
91    
92    --
93    
94  evolution (CVE-2009-1631)  evolution (CVE-2009-1631)
95  #526409  #526409
96    notified maintainer through initial bugreport
97    
98    --
99    
100    fcron (CVE-2010-0791)
101    #572587
102    notified maintainer through initial bugreport
103    
104    --
105    
106    libgnucrypto-java (CVE-2008-5659)
107    #559789
108    removed
109    
110  --  --
111    
# Line 48  notified maintainer Line 115  notified maintainer
115    
116  --  --
117    
118    gri (no CVE)
119    fixed in gri 2.12.18-1:
120    "Improve security when creating temporary files."
121    notified maintainer
122    
123    --
124    
125    gupnp (CVE-2009-2174)
126    #534594
127    notified maintainer
128    
129    --
130    
131    htmldoc (CVE-2009-3050)
132    #537637
133    notified maintainer through initial bugreport
134    
135    --
136    
137    hypre (CVE-2009-3736)
138    #559834
139    notified maintainer
140    
141    --
142    
143    kde4libs (CVE-2009-2702)
144    #546218
145    notified maintainer
146    
147    CVE-2009-0689
148    
149    --
150    
151  kfreebsd-6  kfreebsd-6
152  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]
153  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc
# Line 81  notified maintainer through initial bugr Line 181  notified maintainer through initial bugr
181    
182  --  --
183    
184    libpam-ssh (CVE-2009-1273)
185    #535877
186    maintainer notified through initial bug report, said he would work on an update
187    
188    --
189    
190  libpng (CVE-2009-2042)  libpng (CVE-2009-2042)
191  #533676  #533676
192  notified maintainer  notified maintainer
193    
194    CVE-2010-0205
195    #572308
196    
197  --  --
198    
199  libsndfile  libsndfile
# Line 98  notified maintainer and release team Line 207  notified maintainer and release team
207    
208  --  --
209    
210    libstruts1.2-java (CVE-2008-2025)
211    #528352
212    
213    --
214    
215    makepasswd (no CVE ID)
216    #564559
217    
218    --
219    
220    maradns
221    http://maradns.org/download/maradns-1.4.02-parse_segfault.patch
222    notified maintainer
223    
224    --
225    
226  memcached (CVE-2009-1255)  memcached (CVE-2009-1255)
227  notified maintainer  notified maintainer
228    
# Line 115  notified maintainer Line 240  notified maintainer
240    
241  --  --
242    
243    neon27 (CVE-2009-2474)
244    #542926
245    notified maintainer
246    
247    --
248    
249    neon26 (CVE-2009-2474)
250    #542926
251    notified maintainer
252    
253    --
254    
255    network-manager-applet (CVE-2009-4144)
256    #560067
257    notified maintainer through initial bugreport
258    
259    CVE-2009-4145
260    #563371
261    notified maintainer through initial bugreport
262    
263    --
264    
265    ntop (CVE-2009-2732)
266    #543312
267    notified maintainer through initial bugreport
268    
269    --
270    
271    postfix (CVE-2009-2939)
272    notified maintainer
273    
274    --
275    
276  squid (CVE-2009-0801)  squid (CVE-2009-0801)
277  #521053  #521053
278    
# Line 125  squid3 (CVE-2009-0801) Line 283  squid3 (CVE-2009-0801)
283    
284  --  --
285    
286  stardict (CVE-2009-2260)  t-prot (CVE-2009-4404)
 #534731  
 notified maintainer  
287    
288  --  --
289    
# Line 136  Noah will see to it. Line 292  Noah will see to it.
292    
293  --  --
294    
295    ocsinventory-server (CVE-2009-3040, CVE-2009-3042, CVE-2009-1443)
296    #541995
297    notified maintainer
298    
299    --
300    
301  openldap  openldap
302  #253838  #253838
303  notified maintainer  notified maintainer
304    
305  --  --
306    
307    overkill (no CVE yet)
308    #549310
309    
310    --
311    
312    owl (CVE-2009-0363)
313    #515118
314    notified maintainer
315    
316    --
317    
318  pam (CVE-2009-0579)  pam (CVE-2009-0579)
319  #514437  #514437
320  asked maintainer in mail  asked maintainer in mail
321    
322  --  --
323    
324    pidgin (CVE-2009-1889, CVE-2009-3083, CVE-2009-3084, CVE-2009-3085)
325    #535790
326    http://developer.pidgin.im/ticket/9483
327    http://developer.pidgin.im/viewmtn/revision/info/9bac0a540156fb1848eedd61c8630737dee752c7
328    notified maintainer
329    
330    --
331    
332  pptp-linux (no CVE)  pptp-linux (no CVE)
333  #523476  #523476
334  Ola will prepare a fix in a point update  Ola will prepare a fix in a point update
335    
336  --  --
337    
338    puppet (CVE-2009-3564)
339    #551073
340    notified maintainer in initial bug report
341    
342    --
343    
344    python-4suite (CVE-2009-3560, CVE-2009-3720)
345    #560914
346    notified maintainer
347    
348    --
349    
350    rails (CVE-2009-3086)
351    bug #545063
352    notified maintainer
353    
354    --
355    
356  slim (CVE-2009-1756)  slim (CVE-2009-1756)
357  bug #529306  bug #529306
358  Maintainer notified through followup in #529306  Maintainer notified through followup in #529306
359    
360  --  --
361    
362  smarty (CVE-2009-1669)  squid (CVE-2010-0639)
363  #529810  #572553
364  http://groups.google.com/group/smarty-svn/browse_thread/thread/b2da2e5d1ef8b462  Maintainer notified through initial bugreport
365  notified maintainer  
366    --
367    
368    squid3 (CVE-2010-0639)
369    #572554
370    Maintainer notified through initial bugreport
371    
372    --
373    
374    sqlite
375    #566326
376    
377  --  --
378    
# Line 173  notified maintainer Line 382  notified maintainer
382    
383  --  --
384    
385  texlive-bin (CVE-2009-1284)  udev (#462655)
386  #520920  notified maintainer
 https://bugzilla.redhat.com/show_bug.cgi?id=492136  
387    
388  --  --
389    
390  udev (#462655)  planet (CVE-2009-2937)
391  notified maintainer  bug #546178
392    notified maintainer through initial bugreport
393    
394  --  --
395    
# Line 194  xemacs21 (CVE-2008-2142) Line 403  xemacs21 (CVE-2008-2142)
403  bug #480877  bug #480877
404  notified maintainer  notified maintainer
405    
406    xemacs21 (CVE-2009-2688)
407    #540470
408    Patches at https://bugzilla.redhat.com/show_bug.cgi?id=511994
409    notified maintainer
410    
411  --  --
412    
413  xen-3 (CVE-2008-4993)  xen-3 (CVE-2008-4993)
# Line 202  notified maintainer Line 416  notified maintainer
416    
417  --  --
418    
419    xerces-c2 (CVE-2009-1885)
420    #541986
421    notified maintainer
422    
423    --
424    
425  xfig  xfig
426  25_mkstemp added in 1:3.2.5.a-1  25_mkstemp added in 1:3.2.5.a-1
427  notified maintainer  notified maintainer
428    
429    CVE-2009-4228/CVE-2009-4227
430    #559274)
431    https://bugzilla.redhat.com/show_bug.cgi?id=543905
432    
433    --
434    
435    xmp (CVE-2007-6731, CVE-2007-6732)
436    #546730
437    notified maintainer
438    
439    --
440    
441    xserver-xorg (no CVE)
442    #555308
443    
444    --
445    
446    ytnef (CVE-2009-3887, CVE-2009-3721)
447    
448  --  --
449    
450  ziproxy (CVE-2009-0804)  ziproxy (CVE-2009-0804)
451  #521051  #521051
452    notified maintainer
453    
454    --
455    
456    zope2.10 (no CVE)
457    https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
458    
459    --
460    
461    zoph (CVE-2008-6838, CVE-2008-6837, CVE-2009-2343)
462    http://sourceforge.net/tracker/?func=detail&aid=2815898&group_id=69353&atid=524249
463    http://sourceforge.net/project/shownotes.php?group_id=69353&release_id=694128
Legend:
Removed from v.12460  
changed lines
  Added in v.14210
  ViewVC Help
Powered by ViewVC 1.1.5