[Secure-testing-commits] r17336 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Sep 30 14:07:25 UTC 2011 

Author: jmm
Date: 2011-09-30 14:07:25 +0000 (Fri, 30 Sep 2011)
New Revision: 17336

Modified:
   data/CVE/list
Log:
new ffmpeg issue
new mapserver issue
new chromium issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-09-30 05:49:31 UTC (rev 17335)
+++ data/CVE/list	2011-09-30 14:07:25 UTC (rev 17336)
@@ -623,7 +623,6 @@
 	TODO: check
 CVE-2004-2770
 	REJECTED
-	TODO: check
 CVE-2011-3577 (IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.3 ...)
 	TODO: check
 CVE-2011-3576 (Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 8.5.2 ...)
@@ -771,7 +770,9 @@
 CVE-2011-3505
 	RESERVED
 CVE-2011-3504 (The Matroska format decoder in FFmpeg before 0.8.3 does not properly ...)
-	TODO: check
+	- libav <unfixed> 
+	- ffmpeg <removed>
+	- ffmpeg-debian <end-of-life>
 CVE-2011-3503 (Untrusted search path vulnerability in eSignal 10.6.2425.1208, and ...)
 	TODO: check
 CVE-2011-3502 (The web server in Cogent DataHub 7.1.1.63 and earlier allows remote ...)
@@ -1739,7 +1740,7 @@
 CVE-2011-3134 (Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, ...)
 	NOT-FOR-US: TIBCO Spotfire Server
 CVE-2011-3133 (Session fixation vulnerability in TIBCO Spotfire Server 3.0.x before ...)
-	TODO: check
+	NOT-FOR-US: TIBCO Spotfire Server
 CVE-2011-3132 (Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server ...)
 	NOT-FOR-US: TIBCO Spotfire Server
 CVE-2011-3131
@@ -2198,7 +2199,7 @@
 CVE-2011-2976 (Cross-site scripting (XSS) vulnerability in Bugzilla 2.16rc1 through ...)
 	TODO: check
 CVE-2011-2975 (Double free vulnerability in the msAddImageSymbol function in ...)
-	TODO: check
+	- mapserver <unfixed>
 CVE-2011-2974
 	RESERVED
 CVE-2011-2973
@@ -2569,9 +2570,11 @@
 	- chromium-browser 14.0.835.163~r101024-1
 	- webkit <undetermined>
 CVE-2011-2842 (The installer in Google Chrome before 14.0.835.163 on Mac OS X does ...)
-	TODO: check
+	- chromium-browser <undetermined>
+	- webkit <undetermined>
 CVE-2011-2841 (Google Chrome before 14.0.835.163 does not properly perform garbage ...)
-	TODO: check
+	- chromium-browser <undetermined>
+	- webkit <undetermined>
 CVE-2011-2840 (Google Chrome before 14.0.835.163 allows user-assisted remote ...)
 	- chromium-browser 14.0.835.163~r101024-1
 	- webkit <undetermined>

More information about the Secure-testing-commits mailing list