[Secure-testing-commits] r16913 - in data: CVE DSA

Nico Golde nion at alioth.debian.org
Fri Jul 8 07:20:34 UTC 2011 

Author: nion
Date: 2011-07-08 07:20:34 +0000 (Fri, 08 Jul 2011)
New Revision: 16913

Modified:
   data/CVE/list
   data/DSA/list
Log:
- DSA-2273-3-DSA-2275-1
- new qemu-kvm issue (CVE-2011-2212)
- xml-security-c bug


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-07-08 06:19:33 UTC (rev 16912)
+++ data/CVE/list	2011-07-08 07:20:34 UTC (rev 16913)
@@ -1,3 +1,8 @@
+CVE-2011-XXXX [libreoffice lotus word pro filter, wrong object id cast ]
+	- libreoffice 1:3.3.3-1
+	[squeeze] - openoffice.org 1:3.2.1-11+squeeze3
+	[lenny] - openoffice.org <not-affected> (Vulnerable code not present)
+	NOTE: CVE id requested
 CVE-2011-2667
 	RESERVED
 CVE-2011-2666 (The default configuration of the SIP channel driver in Asterisk Open ...)
@@ -349,7 +354,7 @@
 	NOTE: Requires CAP_NET_ADMIn to exploit
 CVE-2011-2516
 	RESERVED
-	- xml-security-c 1.6.1-1
+	- xml-security-c 1.6.1-1 (low; bug #632973)
 CVE-2011-2515
 	RESERVED
 CVE-2011-2514
@@ -1049,6 +1054,8 @@
 	- linux-2.6 3.6.39-3
 CVE-2011-2212
 	RESERVED
+	- qemu-kvm <unfixed> (bug #632987)
+	- kvm <undetermined>
 CVE-2011-2207
 	RESERVED
 CVE-2011-2206 (XMLParser.pm in DJabberd before 0.85 allows remote authenticated users ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2011-07-08 06:19:33 UTC (rev 16912)
+++ data/DSA/list	2011-07-08 07:20:34 UTC (rev 16913)
@@ -1,3 +1,13 @@
+[07 Jul 2011] DSA-2275-1 openoffice.org - buffer overflow
+	[squeeze] - openoffice.org 1:3.2.1-11+squeeze3
+	[lenny] - openoffice.org <not-affected> (Vulnerable code not present)
+[07 Jul 2011] DSA-2274-1 wireshark - multiple
+	{CVE-2011-1590 CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175}
+	[squeeze] - wireshark 1.2.11-6+squeeze2
+	[lenny] - wireshark 1.0.2-3+lenny14
+[06 Jul 2011] DSA-2273-3 icedove - multiple issues
+	{CVE-2011-0083 CVE-2011-0085 CVE-2011-2362 CVE-2011-2363 CVE-2011-2365 CVE-2011-2371 CVE-2011-2373 CVE-2011-2374 CVE-2011-2376}
+	[squeeze] - icedove 3.0.11-1+squeeze3
 [05 Jul 2011] DSA-2272-1 bind9 - denial of service
 	{CVE-2011-2464}
 	[lenny] - bind9 1:9.6.ESV.R4+dfsg-0+lenny3

More information about the Secure-testing-commits mailing list