[Secure-testing-commits] r16522 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-04-13 18:53:14 +0000 (Wed, 13 Apr 2011)
New Revision: 16522

Modified:
   data/CVE/list
   data/spu-candidates.txt
Log:
- new doctrine issue (FD, please open a ticket)
- new unimportant libpng "DoS"
- new minor rsyslog issues (no-dsa)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-04-13 18:27:27 UTC (rev 16521)
+++ data/CVE/list	2011-04-13 18:53:14 UTC (rev 16522)
@@ -364,12 +364,15 @@
 	RESERVED
 CVE-2011-1522
 	RESERVED
+	- doctrine <unfixed> (bug #622674)
 CVE-2010-4777
 	RESERVED
 CVE-2009-5063
 	RESERVED
+ 	- libpng 1.2.39-1 (unimportant)
 CVE-2006-7244
 	RESERVED
+	- libpng 1.2.39-1 (unimportant)
 CVE-2011-1520 (The default configuration of the server console in IBM Lotus Domino ...)
 	NOT-FOR-US: Lotus Domino
 CVE-2011-1519 (The remote console in the Server Controller in IBM Lotus Domino 7.x ...)
@@ -471,10 +474,19 @@
 	TODO: check
 CVE-2011-1490
 	RESERVED
+	- rsyslog 5.7.6-1 (low)
+	[squeeze] - rsyslog <no-dsa> (Minor issue)
+	[lenny] - rsyslog <no-dsa> (Minor issue)
 CVE-2011-1489
 	RESERVED
+	- rsyslog 5.7.6-1 (low)
+	[squeeze] - rsyslog <no-dsa> (Minor issue)
+	[lenny] - rsyslog <no-dsa> (Minor issue)
 CVE-2011-1488
 	RESERVED
+	- rsyslog 5.7.6-1 (low)
+	[squeeze] - rsyslog <no-dsa> (Minor issue)
+	[lenny] - rsyslog <no-dsa> (Minor issue)
 CVE-2011-1487 (The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl ...)
 	TODO: check
 CVE-2011-1486

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2011-04-13 18:27:27 UTC (rev 16521)
+++ data/spu-candidates.txt	2011-04-13 18:53:14 UTC (rev 16522)
@@ -91,6 +91,11 @@
 
 --
 
+rsyslog (CVE-2011-1488, CVE-2011-1489, CVE-2011-1490)
+http://marc.info/?l=oss-security&m=130194141413125&w=2
+
+--
+
 ruby1.8 (CVE-2011-1004, CVE-2011-1005)
 #615517, #615518