/[secure-testing]/data/spu-candidates.txt
ViewVC logotype

Diff of /data/spu-candidates.txt

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 12711 by jmm-guest, Sun Aug 30 21:03:42 2009 UTC revision 14206 by jmm-guest, Sun Mar 7 16:40:56 2010 UTC
# Line 3  but which could be fixed in a stable poi Line 3  but which could be fixed in a stable poi
3  it. If someone wants to address these, please add a note about it  it. If someone wants to address these, please add a note about it
4  and get in contact with debian-release@lists.debian.org  and get in contact with debian-release@lists.debian.org
5    
6    
7    --
8    
9    acidbase (CVE-2009-4590, CVE-2009-4591, CVE-2009-4592)
10    notified maintainer
11    
12    --
13    
14    acl (CVE-2009-4411)
15    #499076
16    notified maintainer
17    
18  --  --
19    
20  asterisk (CVE-2009-0041)  asterisk (CVE-2009-0041)
21  #513413  #513413
22  notified maintainer  notified maintainer
23    
24  CVE-2008-3903  asterisk (CVE-2008-3903)
25  #522528  #522528
26  notified maintainer  notified maintainer
27    
# Line 21  notified maintainer Line 33  notified maintainer
33    
34  --  --
35    
36    babel (CVE-2009-3736)
37    #559843
38    notified maintainer
39    
40    --
41    
42  bugzilla (CVE-2009-0481 to CVE-2009-0485)  bugzilla (CVE-2009-0481 to CVE-2009-0485)
43  notified maintainer  notified maintainer
44    
45  --  --
46    
47  burn: (no CVE yet)  buildbot (CVE-2009-2959, CVE-2009-2967)
48  #542329  #543822
49  notified maintainer through bug report  notified maintainer
50    
51  --  --
52    
# Line 43  notified maintainer Line 61  notified maintainer
61    
62  --  --
63    
64    cups (CVE-2009-3553)
65    #557740
66    maintainer notified in initial bug report
67    
68    --
69    
70    devil (CVE-2009-3994)
71    #560080
72    notified maintainer
73    
74    --
75    
76    dopewars (CVE-2009-3591)
77    #550913
78    notified maintainer
79    
80    --
81    
82    dstat (CVE-2009-3894)
83    http://svn.rpmforge.net/svn/trunk/tools/dstat/ChangeLog
84    notified maintainer
85    
86    dstat (CVE-2009-4081)
87    #559667
88    notified maintainer
89    
90    --
91    
92  evolution (CVE-2009-1631)  evolution (CVE-2009-1631)
93  #526409  #526409
94  notified maintainer through initial bugreport  notified maintainer through initial bugreport
95    
96  --  --
97    
98  firebird2.0 (CVE-2009-2620)  libgnucrypto-java (CVE-2008-5659)
99  #539477  #559789
100  notified maintainer  removed
101    
102  --  --
103    
# Line 61  notified maintainer Line 107  notified maintainer
107    
108  --  --
109    
110    gri (no CVE)
111    fixed in gri 2.12.18-1:
112    "Improve security when creating temporary files."
113    notified maintainer
114    
115    --
116    
117    gupnp (CVE-2009-2174)
118    #534594
119    notified maintainer
120    
121    --
122    
123    htmldoc (CVE-2009-3050)
124    #537637
125    notified maintainer through initial bugreport
126    
127    --
128    
129    hypre (CVE-2009-3736)
130    #559834
131    notified maintainer
132    
133    --
134    
135    kde4libs (CVE-2009-2702)
136    #546218
137    notified maintainer
138    
139    CVE-2009-0689
140    
141    --
142    
143  kfreebsd-6  kfreebsd-6
144  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]  [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl]
145  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc  http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc
# Line 104  libpng (CVE-2009-2042) Line 183  libpng (CVE-2009-2042)
183  #533676  #533676
184  notified maintainer  notified maintainer
185    
186    CVE-2010-0205
187    #572308
188    
189  --  --
190    
191  libsndfile  libsndfile
# Line 117  notified maintainer and release team Line 199  notified maintainer and release team
199    
200  --  --
201    
202    libstruts1.2-java (CVE-2008-2025)
203    #528352
204    
205    --
206    
207    makepasswd (no CVE ID)
208    #564559
209    
210    --
211    
212    maradns
213    http://maradns.org/download/maradns-1.4.02-parse_segfault.patch
214    notified maintainer
215    
216    --
217    
218  memcached (CVE-2009-1255)  memcached (CVE-2009-1255)
219  notified maintainer  notified maintainer
220    
# Line 134  notified maintainer Line 232  notified maintainer
232    
233  --  --
234    
235    neon27 (CVE-2009-2474)
236    #542926
237    notified maintainer
238    
239    --
240    
241    neon26 (CVE-2009-2474)
242    #542926
243    notified maintainer
244    
245    --
246    
247    network-manager-applet (CVE-2009-4144)
248    #560067
249    notified maintainer through initial bugreport
250    
251    CVE-2009-4145
252    #563371
253    notified maintainer through initial bugreport
254    
255    --
256    
257  ntop (CVE-2009-2732)  ntop (CVE-2009-2732)
258  #543312  #543312
259    notified maintainer through initial bugreport
260    
261    --
262    
263    postfix (CVE-2009-2939)
264    notified maintainer
265    
266  --  --
267    
# Line 149  squid3 (CVE-2009-0801) Line 275  squid3 (CVE-2009-0801)
275    
276  --  --
277    
278    t-prot (CVE-2009-4404)
279    
280    --
281    
282  net-snmp (CVE-2008-6123)  net-snmp (CVE-2008-6123)
283  Noah will see to it.  Noah will see to it.
284    
285  --  --
286    
287    ocsinventory-server (CVE-2009-3040, CVE-2009-3042, CVE-2009-1443)
288    #541995
289    notified maintainer
290    
291    --
292    
293  openldap  openldap
294  #253838  #253838
295  notified maintainer  notified maintainer
296    
297  --  --
298    
299    overkill (no CVE yet)
300    #549310
301    
302    --
303    
304    owl (CVE-2009-0363)
305    #515118
306    notified maintainer
307    
308    --
309    
310  pam (CVE-2009-0579)  pam (CVE-2009-0579)
311  #514437  #514437
312  asked maintainer in mail  asked maintainer in mail
313    
314  --  --
315    
316    pidgin (CVE-2009-1889, CVE-2009-3083, CVE-2009-3084, CVE-2009-3085)
317    #535790
318    http://developer.pidgin.im/ticket/9483
319    http://developer.pidgin.im/viewmtn/revision/info/9bac0a540156fb1848eedd61c8630737dee752c7
320    notified maintainer
321    
322    --
323    
324  pptp-linux (no CVE)  pptp-linux (no CVE)
325  #523476  #523476
326  Ola will prepare a fix in a point update  Ola will prepare a fix in a point update
327    
328  --  --
329    
330    puppet (CVE-2009-3564)
331    #551073
332    notified maintainer in initial bug report
333    
334    --
335    
336    python-4suite (CVE-2009-3560, CVE-2009-3720)
337    #560914
338    notified maintainer
339    
340    --
341    
342    rails (CVE-2009-3086)
343    bug #545063
344    notified maintainer
345    
346    --
347    
348  slim (CVE-2009-1756)  slim (CVE-2009-1756)
349  bug #529306  bug #529306
350  Maintainer notified through followup in #529306  Maintainer notified through followup in #529306
351    
352  --  --
353    
354  smarty (CVE-2009-1669)  squid (CVE-2010-0639)
355  #529810  #572553
356  http://groups.google.com/group/smarty-svn/browse_thread/thread/b2da2e5d1ef8b462  Maintainer notified through initial bugreport
357  notified maintainer  
358    --
359    
360    squid3 (CVE-2010-0639)
361    #572554
362    Maintainer notified through initial bugreport
363    
364    --
365    
366    sqlite
367    #566326
368    
369  --  --
370    
# Line 191  notified maintainer Line 374  notified maintainer
374    
375  --  --
376    
377  texlive-bin (CVE-2009-1284)  udev (#462655)
378  #520920  notified maintainer
 https://bugzilla.redhat.com/show_bug.cgi?id=492136  
379    
380  --  --
381    
382  udev (#462655)  planet (CVE-2009-2937)
383  notified maintainer  bug #546178
384    notified maintainer through initial bugreport
385    
386  --  --
387    
# Line 225  notified maintainer Line 408  notified maintainer
408    
409  --  --
410    
411    xerces-c2 (CVE-2009-1885)
412    #541986
413    notified maintainer
414    
415    --
416    
417  xfig  xfig
418  25_mkstemp added in 1:3.2.5.a-1  25_mkstemp added in 1:3.2.5.a-1
419  notified maintainer  notified maintainer
420    
421    CVE-2009-4228/CVE-2009-4227
422    #559274)
423    https://bugzilla.redhat.com/show_bug.cgi?id=543905
424    
425  --  --
426    
427  xscreensaver (no CVE)  xmp (CVE-2007-6731, CVE-2007-6732)
428  #539699  #546730
429    notified maintainer
430    
431    --
432    
433    xserver-xorg (no CVE)
434    #555308
435    
436    --
437    
438    ytnef (CVE-2009-3887, CVE-2009-3721)
439    
440  --  --
441    
442  ziproxy (CVE-2009-0804)  ziproxy (CVE-2009-0804)
443  #521051  #521051
444    notified maintainer
445    
446    --
447    
448    zope2.10 (no CVE)
449    https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
450    
451    --
452    
453    zoph (CVE-2008-6838, CVE-2008-6837, CVE-2009-2343)
454    http://sourceforge.net/tracker/?func=detail&aid=2815898&group_id=69353&atid=524249
455    http://sourceforge.net/project/shownotes.php?group_id=69353&release_id=694128
Legend:
Removed from v.12711  
changed lines
  Added in v.14206
  ViewVC Help
Powered by ViewVC 1.1.5