/[secure-testing]/data/spu-candidates.txt
ViewVC logotype

Diff of /data/spu-candidates.txt

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 12922 by jmm-guest, Fri Oct 2 23:18:07 2009 UTC revision 14214 by jmm-guest, Sun Mar 7 21:03:17 2010 UTC
# Line 3  but which could be fixed in a stable poi Line 3  but which could be fixed in a stable poi
3  it. If someone wants to address these, please add a note about it  it. If someone wants to address these, please add a note about it
4  and get in contact with debian-release@lists.debian.org  and get in contact with debian-release@lists.debian.org
5    
6    
7    --
8    
9    acidbase (CVE-2009-4590, CVE-2009-4591, CVE-2009-4592)
10    notified maintainer
11    
12    --
13    
14    acl (CVE-2009-4411)
15    #499076
16    notified maintainer
17    
18  --  --
19    
20  asterisk (CVE-2009-0041)  asterisk (CVE-2009-0041)
21  #513413  #513413
22  notified maintainer  notified maintainer
23    
24  CVE-2008-3903  asterisk (CVE-2008-3903)
25  #522528  #522528
26  notified maintainer  notified maintainer
27    
# Line 21  notified maintainer Line 33  notified maintainer
33    
34  --  --
35    
36  backuppc [BackupPC ClientNameAlias ssh rsync backup security bypass]  babel (CVE-2009-3736)
37  #542218  #559843
38    notified maintainer
39    
40  --  --
41    
# Line 48  notified maintainer Line 61  notified maintainer
61    
62  --  --
63    
64    cups (CVE-2009-3553)
65    #557740
66    maintainer notified in initial bug report
67    Initial patch was incomplete; CVE-2010-0302
68    
69    
70    --
71    
72    devil (CVE-2009-3994)
73    #560080
74    notified maintainer
75    
76    --
77    
78    dopewars (CVE-2009-3591)
79    #550913
80    notified maintainer
81    
82    --
83    
84    dstat (CVE-2009-3894)
85    http://svn.rpmforge.net/svn/trunk/tools/dstat/ChangeLog
86    notified maintainer
87    
88    dstat (CVE-2009-4081)
89    #559667
90    notified maintainer
91    
92    --
93    
94  evolution (CVE-2009-1631)  evolution (CVE-2009-1631)
95  #526409  #526409
96  notified maintainer through initial bugreport  notified maintainer through initial bugreport
97    
98  --  --
99    
100  firebird2.0 (CVE-2009-2620)  fcron (CVE-2010-0791)
101  #539477  #572587
102  notified maintainer  notified maintainer through initial bugreport
103    
104    --
105    
106    libgnucrypto-java (CVE-2008-5659)
107    #559789
108    removed
109    
110  --  --
111    
# Line 81  notified maintainer Line 130  notified maintainer
130    
131  htmldoc (CVE-2009-3050)  htmldoc (CVE-2009-3050)
132  #537637  #537637
133    notified maintainer through initial bugreport
134    
135    --
136    
137    hypre (CVE-2009-3736)
138    #559834
139    notified maintainer
140    
141  --  --
142    
143  kde4libs (CVE-2009-2702)  kde4libs (CVE-2009-2702)
144  #546218  #546218
145    notified maintainer
146    
147    CVE-2009-0689
148    
149  --  --
150    
# Line 132  libpng (CVE-2009-2042) Line 191  libpng (CVE-2009-2042)
191  #533676  #533676
192  notified maintainer  notified maintainer
193    
194    CVE-2010-0205
195    #572308
196    
197  --  --
198    
199  libsndfile  libsndfile
# Line 145  notified maintainer and release team Line 207  notified maintainer and release team
207    
208  --  --
209    
210    libstruts1.2-java (CVE-2008-2025)
211    #528352
212    
213    --
214    
215    makepasswd (no CVE ID)
216    #564559
217    
218    --
219    
220    maradns
221    http://maradns.org/download/maradns-1.4.02-parse_segfault.patch
222    notified maintainer
223    
224    --
225    
226  memcached (CVE-2009-1255)  memcached (CVE-2009-1255)
227  notified maintainer  notified maintainer
228    
# Line 157  orphaned Line 235  orphaned
235    
236  --  --
237    
 movabletype-opensource (CVE-2009-2492)  
 #537935  
 notified maintainer  
   
 --  
   
238  mpg123 (CVE-2009-1301)  mpg123 (CVE-2009-1301)
239  notified maintainer  notified maintainer
240    
# Line 180  notified maintainer Line 252  notified maintainer
252    
253  --  --
254    
255    network-manager-applet (CVE-2009-4144)
256    #560067
257    notified maintainer through initial bugreport
258    
259    CVE-2009-4145
260    #563371
261    notified maintainer through initial bugreport
262    
263    --
264    
265  ntop (CVE-2009-2732)  ntop (CVE-2009-2732)
266  #543312  #543312
267  notified maintainer through initial bugreport  notified maintainer through initial bugreport
# Line 201  squid3 (CVE-2009-0801) Line 283  squid3 (CVE-2009-0801)
283    
284  --  --
285    
286    t-prot (CVE-2009-4404)
287    
288    --
289    
290  net-snmp (CVE-2008-6123)  net-snmp (CVE-2008-6123)
291  Noah will see to it.  Noah will see to it.
292    
# Line 208  Noah will see to it. Line 294  Noah will see to it.
294    
295  ocsinventory-server (CVE-2009-3040, CVE-2009-3042, CVE-2009-1443)  ocsinventory-server (CVE-2009-3040, CVE-2009-3042, CVE-2009-1443)
296  #541995  #541995
297    notified maintainer
 --  
   
 open-iscsi (CVE-2009-1297)  
 notified maintainer in initial bug report  
298    
299  --  --
300    
# Line 222  notified maintainer Line 304  notified maintainer
304    
305  --  --
306    
307    overkill (no CVE yet)
308    #549310
309    
310    --
311    
312  owl (CVE-2009-0363)  owl (CVE-2009-0363)
313  #515118  #515118
314    notified maintainer
315    
316  --  --
317    
# Line 237  pidgin (CVE-2009-1889, CVE-2009-3083, CV Line 325  pidgin (CVE-2009-1889, CVE-2009-3083, CV
325  #535790  #535790
326  http://developer.pidgin.im/ticket/9483  http://developer.pidgin.im/ticket/9483
327  http://developer.pidgin.im/viewmtn/revision/info/9bac0a540156fb1848eedd61c8630737dee752c7  http://developer.pidgin.im/viewmtn/revision/info/9bac0a540156fb1848eedd61c8630737dee752c7
328    notified maintainer
329    
330  --  --
331    
# Line 246  Ola will prepare a fix in a point update Line 335  Ola will prepare a fix in a point update
335    
336  --  --
337    
338    puppet (CVE-2009-3564)
339    #551073
340    notified maintainer in initial bug report
341    
342    CVE-2010-0156
343    #https://bugzilla.redhat.com/show_bug.cgi?id=502881
344    
345    --
346    
347    python-4suite (CVE-2009-3560, CVE-2009-3720)
348    #560914
349    notified maintainer
350    
351    --
352    
353  rails (CVE-2009-3086)  rails (CVE-2009-3086)
354  bug #545063  bug #545063
355    notified maintainer
356    
357    --
358    
359    shibboleth-sp2: world-readable key (no CVE)
360    #571631
361    notified maintainer through bugreport
362    
363  --  --
364    
# Line 257  Maintainer notified through followup in Line 368  Maintainer notified through followup in
368    
369  --  --
370    
371  smarty (CVE-2009-1669)  squid (CVE-2010-0639)
372  #529810  #572553
373  http://groups.google.com/group/smarty-svn/browse_thread/thread/b2da2e5d1ef8b462  Maintainer notified through initial bugreport
 notified maintainer  
374    
375  --  --
376    
377  tau (CVE-2008-5157)  squid3 (CVE-2010-0639)
378  #506348  #572554
379  notified maintainer  Maintainer notified through initial bugreport
380    
381  --  --
382    
383  texlive-bin (CVE-2009-1284)  sqlite
384  #520920  #566326
385  https://bugzilla.redhat.com/show_bug.cgi?id=492136  
386    --
387    
388    tau (CVE-2008-5157)
389    #506348
390    notified maintainer
391    
392  --  --
393    
# Line 310  notified maintainer Line 425  notified maintainer
425    
426  --  --
427    
428  xerces-c (CVE-2009-1885)  xerces-c2 (CVE-2009-1885)
429  #540297  #541986
430    notified maintainer
431    
432  --  --
433    
# Line 319  xfig Line 435  xfig
435  25_mkstemp added in 1:3.2.5.a-1  25_mkstemp added in 1:3.2.5.a-1
436  notified maintainer  notified maintainer
437    
438    CVE-2009-4228/CVE-2009-4227
439    #559274)
440    https://bugzilla.redhat.com/show_bug.cgi?id=543905
441    
442  --  --
443    
444  xscreensaver (no CVE)  xmp (CVE-2007-6731, CVE-2007-6732)
445  #539699  #546730
446  notified maintainer  notified maintainer
447    
448  --  --
449    
450    xserver-xorg (no CVE)
451    #555308
452    
453    --
454    
455    ytnef (CVE-2009-3887, CVE-2009-3721)
456    
457    --
458    
459  ziproxy (CVE-2009-0804)  ziproxy (CVE-2009-0804)
460  #521051  #521051
461    notified maintainer
462    
463    --
464    
465    zope2.10 (no CVE)
466    https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
467    
468    --
469    
470    zoph (CVE-2008-6838, CVE-2008-6837, CVE-2009-2343)
471    http://sourceforge.net/tracker/?func=detail&aid=2815898&group_id=69353&atid=524249
472    http://sourceforge.net/project/shownotes.php?group_id=69353&release_id=694128
Legend:
Removed from v.12922  
changed lines
  Added in v.14214
  ViewVC Help
Powered by ViewVC 1.1.5