diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2019-11-09 08:10:25 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2019-11-09 08:10:25 +0000 |
| commit | c373def2a621ed304366451db60a2b7954332a92 (patch) | |
| tree | 32fd7ff82361630f502531b313fb9dd40f9804de /data/CVE/2009.list | |
| parent | 9b70afe910b5692f4a141d6ebfc93c2ed7e49aa4 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2009.list')
| -rw-r--r-- | data/CVE/2009.list | 18 |
1 files changed, 6 insertions, 12 deletions
diff --git a/data/CVE/2009.list b/data/CVE/2009.list index c218530496..189351bf18 100644 --- a/data/CVE/2009.list +++ b/data/CVE/2009.list @@ -369,8 +369,7 @@ CVE-2009-5006 (The SessionAdapter::ExchangeHandlerImpl::checkAlternate function - qpid-cpp <not-affected> (Fixed before initial upload to archive) CVE-2009-5005 (The Cluster::deliveredEvent function in cluster/Cluster.cpp in Apache ...) - qpid-cpp <not-affected> (Fixed before initial upload to archive) -CVE-2009-5004 - RESERVED +CVE-2009-5004 (qpid-cpp 1.0 crashes when a large message is sent and the Digest-MD5 m ...) - qpid-cpp <not-affected> (Fixed before initial upload to archive) CVE-2009-5003 (SQL injection vulnerability in click.php in e-soft24 Banner Exchange S ...) NOT-FOR-US: e-soft24 Banner Exchange Script @@ -2738,8 +2737,7 @@ CVE-2009-4013 (Multiple directory traversal vulnerabilities in Lintian 1.23.x th CVE-2009-4012 (Multiple integer overflows in LibThai before 0.1.13 might allow contex ...) {DSA-1971-1} - libthai 0.1.13-1 -CVE-2009-4011 [dtc-xen race condition] - RESERVED +CVE-2009-4011 (dtc-xen 0.5.x before 0.5.4 suffers from a race condition where an atta ...) - dtc-xen 0.5.4-1 [lenny] - dtc-xen <not-affected> (Only affects 0.5.x) CVE-2009-4010 (Unspecified vulnerability in PowerDNS Recursor before 3.1.7.2 allows r ...) @@ -3975,8 +3973,7 @@ CVE-2009-3615 (The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and {DSA-1932-1} - pidgin 2.6.3-1 NOTE: http://pidgin.im/news/security/?id=41 -CVE-2009-3614 [oping suid 0 arbitrary file disclosure] - RESERVED +CVE-2009-3614 (liboping 1.3.2 allows users reading arbitrary files upon the local sys ...) - liboping 1.3.3-1 (low; bug #548684) [lenny] - liboping <not-affected> (doesn't have -f option yet) [etch] - liboping <not-affected> (doesn't have -f option yet) @@ -4240,8 +4237,7 @@ CVE-2009-3553 (Use-after-free vulnerability in the abstract file-descriptor hand [lenny] - cups <no-dsa> (Minor issue) - cupsys <not-affected> (vulnerable code introduced in 1.3.x) NOTE: http://www.cups.org/newsgroups.php/s1+gcups.bugs?s1+gcups.bugs+v4+T+Q3200 -CVE-2009-3552 - RESERVED +CVE-2009-3552 (In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not ver ...) NOT-FOR-US: Red Hat Enterprise Virtualization Manager CVE-2009-3551 (Off-by-one error in the dissect_negprot_response function in packet-sm ...) - wireshark 1.2.3-1 (low; bug #553583) @@ -6140,8 +6136,7 @@ CVE-2009-2804 (Integer overflow in ColorSync in Apple Mac OS X 10.4.11 and 10.5. NOT-FOR-US: Apple Mac OS X CVE-2009-2803 (CarbonCore in Apple Mac OS X 10.4.11 and 10.5.8 allows attackers to ex ...) NOT-FOR-US: Apple Mac OS X -CVE-2009-2802 - RESERVED +CVE-2009-2802 (MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME ty ...) - mantis <not-affected> (Only affects 1.2.x) NOTE: http://www.mantisbt.org/bugs/view.php?id=11952 NOTE: http://www.mantisbt.org/blog/?p=113 @@ -13552,8 +13547,7 @@ CVE-2009-0037 (The redirect implementation in curl and libcurl 5.11 through 7.19 CVE-2009-0036 (Buffer overflow in the proxyReadClientSocket function in proxy/libvirt ...) - libvirt 0.5.1-7 (unimportant) NOTE: not building libvirt proxy from libvirt source package -CVE-2009-0035 [alsainfo insecure temp file usage] - RESERVED +CVE-2009-0035 (alsa-utils 1.0.19 and later versions allows local users to overwrite a ...) - alsa-driver 1.0.20-1 (unimportant) NOTE: alsainfo not built into source package CVE-2009-0034 (parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret ...) |