[Secure-testing-commits] r16545 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-04-19 06:13:36 +0000 (Tue, 19 Apr 2011)
New Revision: 16545

Modified:
   data/CVE/list
Log:
- new tinyproxy issue
- mediawiki, mojolicious, wireshark CVEfied
- new ID for mediawiki incomplete fix


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-04-19 04:28:19 UTC (rev 16544)
+++ data/CVE/list	2011-04-19 06:13:36 UTC (rev 16545)
@@ -42,22 +42,6 @@
 	RESERVED
 CVE-2011-1692
 	RESERVED
-CVE-2011-XXXX [mediawiki XSS specific to IE6]
-	- mediawiki <unfixed> 
-CVE-2011-XXXX [mediawiki CSS validation error]
-	- mediawiki <unfixed> 
-CVE-2011-XXXX [mediawiki lack of ACL checks in transwiki import]
-	- mediawiki <unfixed> 
-CVE-2011-XXXX [wireshark x509 DoS]
-	- wireshark 1.4.5-1 (unimportant)
-CVE-2011-XXXX [wireshark DECT buffer overflow]
-	- wireshark 1.4.5-1
-	[squeeze] - wireshark <not-affected> (Only affects 1.4.x)
-	[lenny] - wireshark <not-affected> (Only affects 1.4.x)
-CVE-2011-XXXX [wireshark NFS DoS]
-	- wireshark <not-affected> (Windows-specific)
-CVE-2011-XXXX [mojoicous directory traversal]
-	- libmojolicious-perl 1.16-1
 CVE-2011-1691 (The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in ...)
 	TODO: check
 CVE-2011-1690
@@ -284,18 +268,25 @@
 	RESERVED
 CVE-2011-1593
 	RESERVED
-CVE-2011-1592
+CVE-2011-1592 [wireshark NFS DoS]
 	RESERVED
-CVE-2011-1591
+	- wireshark <not-affected> (Windows-specific)
+CVE-2011-1591 [wireshark DECT buffer overflow]
 	RESERVED
-CVE-2011-1590
+	- wireshark 1.4.5-1
+	[squeeze] - wireshark <not-affected> (Only affects 1.4.x)
+	[lenny] - wireshark <not-affected> (Only affects 1.4.x)
+CVE-2011-1590 [wireshark x509 DoS]
 	RESERVED
-CVE-2011-1589
+	- wireshark 1.4.5-1 (unimportant)
+CVE-2011-1589 [mojoicous directory traversal]
 	RESERVED
+	- libmojolicious-perl 1.16-1
 CVE-2011-1588
 	RESERVED
-CVE-2011-1587
+CVE-2011-1587 [initial mediawiki fix was incomplete]
 	RESERVED
+	- mediawiki <not-affected> (Incomplete fix never used in Debian)
 CVE-2011-1586
 	RESERVED
 CVE-2011-1585
@@ -312,12 +303,15 @@
 	- linux-2.6 <unfixed> (low)
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.36)
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.36)
-CVE-2011-1580
+CVE-2011-1580 [mediawiki lack of ACL checks in transwiki import]
 	RESERVED
-CVE-2011-1579
+	- mediawiki <unfixed> 
+CVE-2011-1579 [mediawiki CSS validation error]
 	RESERVED
-CVE-2011-1578
+	- mediawiki <unfixed> 
+CVE-2011-1578 [mediawiki XSS specific to IE6]
 	RESERVED
+	- mediawiki <unfixed> 
 CVE-2011-1577
 	RESERVED
 	- linux-2.6 <unfixed> (low)
@@ -548,6 +542,7 @@
 	- pithos 0.3.8-1 (low)
 CVE-2011-1499
 	RESERVED
+	- tinyproxy 1.8.2-2 (bug #621493)
 CVE-2011-1498
 	RESERVED
 CVE-2011-1497