[Secure-testing-commits] r17062 - in data: . CVE

[Jonathan Wiltshire]

Author: jmw
Date: 2011-08-06 20:45:54 +0000 (Sat, 06 Aug 2011)
New Revision: 17062

Modified:
   data/CVE/list
   data/next-oldstable-point-update.txt
   data/next-point-update.txt
   data/ospu-candidates.txt
   data/spu-candidates.txt
Log:
prsc tracking

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-08-06 13:54:28 UTC (rev 17061)
+++ data/CVE/list	2011-08-06 20:45:54 UTC (rev 17062)
@@ -925,7 +925,7 @@
 	- groff 1.20.1-5 (unimportant)
 	NOTE: Only exploitable during build
 CVE-2009-5080 (The (1) contrib/eqn2graph/eqn2graph.sh, (2) ...)
-	- groff 1.20.1-5 (low)
+	- groff 1.20.1-5 (low; bug #538330)
 	[lenny] - groff <no-dsa> (Minor issue)
 CVE-2009-5079 (The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) ...)
 	- groff 1.20.1-5 (unimportant)
@@ -1986,7 +1986,7 @@
 	NOTE: http://code.google.com/p/cherokee/issues/detail?id=1212
 CVE-2011-2188 (LuaExpat before 1.2.0 does not properly detect recursion during entity ...)
 	- lua-expat 1.2.0-1 (low; bug #629225)
-	[squeeze] - lua-expat <no-dsa> (Minor issue)
+	[squeeze] - lua-expat 1.2.0-0squeeze1
 	[lenny] - lua-expat <no-dsa> (Minor issue)
 CVE-2011-2184 [race condition in KSM]
 	RESERVED

Modified: data/next-oldstable-point-update.txt
===================================================================
--- data/next-oldstable-point-update.txt	2011-08-06 13:54:28 UTC (rev 17061)
+++ data/next-oldstable-point-update.txt	2011-08-06 20:45:54 UTC (rev 17062)
@@ -48,4 +48,5 @@
 	[lenny] - tesseract 2.03-2+lenny1 (bug #612032)
 CVE-2011-XXXX
 	[lenny] - 1.6.0-2+lenny1
-
+CVE-2011-1920
+	[lenny] - 1.111-1+lenny1

Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt	2011-08-06 13:54:28 UTC (rev 17061)
+++ data/next-point-update.txt	2011-08-06 20:45:54 UTC (rev 17062)
@@ -12,3 +12,7 @@
 	[squeeze] - openarena 0.8.5-5+squeeze1
 CVE-2011-XXXX
 	[squeeze] - 1.8.0-1+squeeze1
+CVE-2011-2684
+	[squeeze] - foo2zjs 20090908dfsg-5.1+squeeze0
+CVE-2011-1920
+	[squeeze] - pmake 1.111-2+squeeze1

Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt	2011-08-06 13:54:28 UTC (rev 17061)
+++ data/ospu-candidates.txt	2011-08-06 20:45:54 UTC (rev 17062)
@@ -519,11 +519,6 @@
 
 --
 
-pmake (CVE-2011-1920)
-#626673
-
---
-
 postfix (CVE-2009-2939)
 notified maintainer
 
@@ -619,6 +614,7 @@
 
 vte (CVE-2011-2198)
 #629688
+awaiting maintainer response
 
 --
 

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2011-08-06 13:54:28 UTC (rev 17061)
+++ data/spu-candidates.txt	2011-08-06 20:45:54 UTC (rev 17062)
@@ -63,12 +63,6 @@
 
 --
 
-pmake (CVE-2011-1920)
-#626673
-awaiting maintainer response
-
---
-
 prosody (CVE-2011-2205)
 #579087
 Also requires additional fix in lua-expat
@@ -118,6 +112,7 @@
 
 vte (CVE-2011-2198)
 #629688
+awaiting maintainer response
 
 --