From c152a77f01213d389f419ec35ba66935ca868236 Mon Sep 17 00:00:00 2001 From: security tracker role Date: Thu, 31 Oct 2019 20:10:30 +0000 Subject: automatic update --- data/CVE/2009.list | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) (limited to 'data/CVE/2009.list') diff --git a/data/CVE/2009.list b/data/CVE/2009.list index f77ca77177..02910271a1 100644 --- a/data/CVE/2009.list +++ b/data/CVE/2009.list @@ -2103,8 +2103,7 @@ CVE-2009-4297 (Multiple cross-site request forgery (CSRF) vulnerabilities in Moo {DSA-1986-1} - moodle 1.8.2.dfsg-6 (bug #559531) NOTE: MSA-09-0022 -CVE-2009-5042 [docutils insecure usage of temporary files] - RESERVED +CVE-2009-5042 (python-docutils allows insecure usage of temporary files ...) - python-docutils 0.6-2 (low; bug #560755) [etch] - python-docutils (vulnerable code introduced in 0.5) [lenny] - python-docutils 0.5-2+lenny1 @@ -4327,8 +4326,7 @@ CVE-2009-3525 (The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does no NOTE: This is an enhancement, not a security issue. NOTE: A user must have access to a guest hard drive image in order to boot it, NOTE: so he can simply mount the drive and remove the password option. -CVE-2009-5041 [buffer overflow in overkill] - RESERVED +CVE-2009-5041 (overkill has buffer overflow via long player names that can corrupt da ...) - overkill 0.16-14.1 (bug #549310; low) [lenny] - overkill (Minor issue) [etch] - overkill (Minor issue) @@ -5945,8 +5943,7 @@ CVE-2009-3369 (CgiUserConfigEdit in BackupPC 3.1.0, when SSH keys and Rsync are - backuppc 3.1.0-8 (low; bug #542218) [etch] - backuppc (No configuration GUI) [lenny] - backuppc 3.1.0-4lenny2 -CVE-2009-5043 [burn: Insecure escaping of file names] - RESERVED +CVE-2009-5043 (burn allows file names to escape via mishandled quotation marks ...) - burn 0.4.5-1 (low; bug #542329) [lenny] - burn 0.4.3-2.1+lenny1 [etch] - burn (Minor issue) -- cgit v1.2.3