[Secure-testing-commits] r14972 - in data: . CVE

[Giuseppe Iuculano]

Author: iuculano
Date: 2010-07-09 22:28:34 +0000 (Fri, 09 Jul 2010)
New Revision: 14972

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
added chromium-browser embedded code copies

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-07-07 21:14:24 UTC (rev 14971)
+++ data/CVE/list	2010-07-09 22:28:34 UTC (rev 14972)
@@ -26867,9 +26867,11 @@
 CVE-2008-4226 (Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 ...)
 	{DSA-1666-1}
 	- libxml2 2.6.32.dfsg-5
+	- chromium-browser 5.0.375.29~r46008-1
 CVE-2008-4225 (Integer overflow in the xmlBufferResize function in libxml2 2.7.2 ...)
 	{DSA-1666-1}
 	- libxml2 2.6.32.dfsg-5
+	- chromium-browser 5.0.375.29~r46008-1
 CVE-2008-4224 (UDF in Apple Mac OS X before 10.5.6 allows user-assisted attackers to ...)
 	NOT-FOR-US: UDF Mac OS X
 CVE-2008-4223 (Podcast Producer in Apple Mac OS X 10.5 before 10.5.6 allows remote ...)
@@ -29262,6 +29264,7 @@
 CVE-2008-3281 (libxml2 2.6.32 and earlier does not properly detect recursion during ...)
 	{DSA-1631-1 DTSA-158-1}
 	- libxml2 2.6.32.dfsg-3 (medium)
+	- chromium-browser 5.0.375.29~r46008-1
 CVE-2008-3280
 	RESERVED
 CVE-2008-3279 (Untrusted search path vulnerability in libbrlttybba.so in brltty 3.7.2 ...)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2010-07-07 21:14:24 UTC (rev 14971)
+++ data/embedded-code-copies	2010-07-09 22:28:34 UTC (rev 14972)
@@ -53,6 +53,7 @@
 
 libevent
 	- transmission 1.71-1 (embed; bug #529372)
+	- chromium-browser 5.0.375.29~r46008-1
 
 lrmi
 	- read-edid 2.0.0-1 (embed; bug #495131)
@@ -317,6 +318,7 @@
 	TODO: gimp-gap (potentially using ffmpeg code as well)
         - avifile 1:0.7.48~20090503.ds-1 (embed; bug #538750)
 	- audacity 1.3.7-2 (embed; bug #512278)
+	- chromium-browser <unfixed> (fork)
 
 faad2
 	- mplayer 1.0~rc2-20 (embed)
@@ -673,6 +675,7 @@
 	NOTE: http://lists.debian.org/debian-devel-games/2009/12/msg00007.html
 	- trigger-rally 0.5.2.1-2 (embed)
 	NOTE: http://lists.debian.org/debian-devel-games/2009/12/msg00007.html
+	- chromium-browser 5.0.375.70~r48679-2
 
 minorGems (pabs contacted upstream about shared lib, he considers minorGems an 'ever-evolving collection of reusable code fragments' for his own use)
 	- transcend <unfixed> (embed)
@@ -1105,6 +1108,7 @@
 	- webkit 1.0.1-1 (embed; bug #547214)
 	- texlive-bin <unfixed> (fork)
 	NOTE: texlive upstream working with icu upstream to merge their changes
+	- chromium-browser 5.0.375.29~r46008-3
 
 cyrus-imapd-2.2
 	- kolab-cyrus-imapd <unfixed> (fork)
@@ -1191,6 +1195,7 @@
 	- texlive-bin <not-affected> (Embedded code not compiled in)
 	- vnc4 <unfixed> (embed)
 	- xotcl 1.6.6-1 (embed)
+	- chromium-browser 5.0.375.29~r46008-3
 
 xerces-c
 	- xerces-c2 <unfixed> (old-version)
@@ -1914,3 +1919,21 @@
 
 jbig2dec
         - ghostscript 8.71~dfsg2-1 (embed)
+
+libxml2
+	- chromium-browser 5.0.375.29~r46008-1
+
+protobuf
+	- chromium-browser 5.0.375.70~r48679-2
+
+libv8
+	- chromium-browser 5.0.375.38~r46659-1
+
+nspr
+	- chromium-browser 5.0.375.29~r46008-3
+
+yasm
+	- chromium-browser 5.0.375.29~r46008-2
+
+libxslt
+	- chromium-browser 5.0.375.29~r46008-1