[Secure-testing-commits] r18865 - data/CVE
Luk Claes
luk at alioth.debian.org
Sat Apr 7 14:10:07 UTC 2012
Author: luk
Date: 2012-04-07 14:10:07 +0000 (Sat, 07 Apr 2012)
New Revision: 18865
Modified:
data/CVE/list
Log:
Mark bugs as fixed and packages as removed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-04-07 12:54:50 UTC (rev 18864)
+++ data/CVE/list 2012-04-07 14:10:07 UTC (rev 18865)
@@ -1358,7 +1358,7 @@
- file <unfixed> (low)
[squeeze] - file 5.04-5+squeeze1
CVE-2012-1570 (The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 ...)
- - maradns <unfixed> (bug #665012)
+ - maradns 1.4.12-1 (bug #665012)
CVE-2012-1569 (The asn1_get_length_der function in decoding.c in GNU Libtasn1 before ...)
{DSA-2440-1}
- libtasn1-3 2.12-1 (high)
@@ -4598,7 +4598,7 @@
CVE-2011-5037 (Google V8 computes hash values for form parameters without restricting ...)
- libv8 3.6.6.14-2 (bug #653962)
CVE-2011-5036 (Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes ...)
- - ruby-rack <unfixed> (bug #653963)
+ - ruby-rack 1.4.0-1 (bug #653963)
CVE-2011-5035 (Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications ...)
{DSA-2420-1}
- openjdk-6 6b24-1.11.1-1
@@ -4807,7 +4807,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2012/03/14/11
NOTE: This only affects IE7, which is inherently insecure anyway
CVE-2011-4939 (The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin ...)
- - pidgin <unfixed> (bug #664028)
+ - pidgin 2.10.2-1 (bug #664028)
[squeeze] - pidgin <not-affected> (vulnerable code not present)
NOTE: http://pidgin.im/news/security/?id=60
CVE-2011-4938
@@ -6035,7 +6035,7 @@
[lenny] - curl <not-affected> (Only affects 7.20.0 to 7.23.1)
NOTE: http://curl.haxx.se/docs/adv_20120124.html
CVE-2012-0035 (Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as ...)
- - cedet <unfixed> (low; bug #655299)
+ - cedet <removed> (low; bug #655299)
[squeeze] - cedet <no-dsa> (Minor issue)
- emacs23 23.3+1-5 (low; bug #655300)
[squeeze] - emacs23 <no-dsa> (Minor issue)
@@ -10635,7 +10635,7 @@
- squid <not-affected> (Only a buffer overflow in Squid 3, see https://bugzilla.redhat.com/show_bug.cgi?id=734583#c4)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2011_3.txt
CVE-2011-3204 (hammerhead.cc in Hammerhead 2.1.4 allows local users to write to ...)
- - hammerhead <unfixed> (bug #639890)
+ - hammerhead <removed> (bug #639890)
[lenny] - hammerhead <no-dsa> (Minor issue)
[squeeze] - hammerhead <no-dsa> (Minor issue)
NOTE: https://launchpad.net/bugs/826679
@@ -19232,7 +19232,7 @@
- syslog-ng 3.1.3-2 (bug #608491)
[lenny] - syslog-ng <not-affected> (2.0 not affected, also Freebsd-specific, which is not supported in Lenny anyway)
CVE-2010-XXXX [XSS in ftpls]
- - ftpcopy <unfixed> (bug #607494)
+ - ftpcopy 0.6.7-3 (bug #607494)
[squeeze] - ftpcopy <no-dsa> (Minor issue)
[lenny] - ftpcopy <no-dsa> (Minor issue)
NOTE: CVE ID requested
@@ -35935,7 +35935,7 @@
- siproxd 1:0.8.1-1 (low; bug #559827)
[lenny] - siproxd <no-dsa> (Minor issue)
[etch] - siproxd <no-dsa> (Minor issue)
- - ski <unfixed> (low; bug #559828)
+ - ski <removed> (low; bug #559828)
- synfig 0.62.00-1 (low; bug #559829)
[lenny] - synfig <no-dsa> (Minor issue)
- xmlsec1 1.2.14-1 (unimportant; bug #559831)
More information about the Secure-testing-commits
mailing list