[Secure-testing-commits] r17019 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-07-28 13:38:40 +0000 (Thu, 28 Jul 2011)
New Revision: 17019

Modified:
   data/CVE/list
Log:
new quake issues
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-07-28 09:48:07 UTC (rev 17018)
+++ data/CVE/list	2011-07-28 13:38:40 UTC (rev 17019)
@@ -240,6 +240,9 @@
 	RESERVED
 CVE-2011-2764
 	RESERVED
+	- openarena <unfixed>
+	[squeeze] - openarena <no-dsa> (Minor issue, will be fixed in point update)
+	- ioquake3 <unfixed>
 CVE-2011-2763
 	RESERVED
 CVE-2011-2762
@@ -991,7 +994,7 @@
 CVE-2011-2469
 	RESERVED
 CVE-2011-2467 (SQL injection vulnerability in lsassd in Lsass in the Likewise ...)
-	TODO: check
+	NOT-FOR-US: Likewise
 CVE-2011-2466
 	RESERVED
 CVE-2011-2465 (Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and ...)
@@ -1593,7 +1596,7 @@
 	- rails <unfixed> (bug #634990)
 	NOTE: likely affected since sid is < 2.3.12
 CVE-2011-2196 (jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as ...)
-	TODO: check
+	NOT-FOR-US: JBoss Seam
 CVE-2011-2195
 	RESERVED
 CVE-2011-2193 (Multiple buffer overflows in Terascale Open-Source Resource and Queue ...)
@@ -3935,8 +3938,10 @@
 	[squeeze] - chromium-browser <not-affected>
 	[wheezy] - chromium-browser <not-affected>
 	- webkit <not-affected> (chromium specific)
-CVE-2011-1412
+CVE-2011-1412 
 	RESERVED
+	- openarena <not-affected> (Vulnerable code not present, the version in sid uses ioquake3)
+	- ioquake3 <unfixed>
 CVE-2011-1411
 	RESERVED
 	{DSA-2284-1}