[Secure-testing-commits] r18809 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Apr 2 10:55:23 UTC 2012


Author: jmm
Date: 2012-04-02 10:55:23 +0000 (Mon, 02 Apr 2012)
New Revision: 18809

Modified:
   data/CVE/list
Log:
new chromium and libv8 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-04-02 10:02:17 UTC (rev 18808)
+++ data/CVE/list	2012-04-02 10:55:23 UTC (rev 18809)
@@ -1586,11 +1586,9 @@
 CVE-2012-1186
 	RESERVED
 	- imagemagick 8:6.6.9.7-7 (bug #665007) 
-	- imagemagick 8:6.7.4.0-3 (bug #665007) 
 CVE-2012-1185
 	RESERVED
 	- imagemagick 8:6.6.9.7-7 (bug #665007) 
-	- imagemagick 8:6.7.4.0-3 (bug #665007) 
 CVE-2012-1184 [Asterisk: Stack Buffer Overflow in HTTP Manager]
 	RESERVED
 	- asterisk 1:1.8.10.0~dfsg-1 (bug #664411)
@@ -10438,22 +10436,30 @@
 	RESERVED
 CVE-2011-3065
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3064
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3063
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3062
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3061
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3060
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3059
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3058
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2011-3057 (Google V8, as used in Google Chrome before 17.0.963.83, allows remote ...)
-	TODO: check
+	- libv8 <unfixed>
 CVE-2011-3056 (Google Chrome before 17.0.963.83 allows remote attackers to bypass the ...)
 	- chromium-browser 17.0.963.83~r127885-1
 CVE-2011-3055 (The browser native UI in Google Chrome before 17.0.963.83 does not ...)
@@ -11053,7 +11059,7 @@
 	NOT-FOR-US: Citrix Access Gateway
 CVE-2011-2881 (Google Chrome before 14.0.835.202 does not properly handle Google V8 ...)
 	- chromium-browser <not-affected> (chromium uses libv8 system copy)
-	- libv8 <undetermined>
+	- libv8 <unfixed>
 CVE-2011-2880 (Use-after-free vulnerability in Google Chrome before 14.0.835.202 ...)
 	- chromium-browser 14.0.835.202~r103287-1
 	[squeeze] - chromium-browser <not-affected>




More information about the Secure-testing-commits mailing list