[Secure-testing-commits] r19892 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Aug 6 08:01:08 UTC 2012 

Author: jmm
Date: 2012-08-06 08:01:08 +0000 (Mon, 06 Aug 2012)
New Revision: 19892

Modified:
   data/CVE/list
Log:
zabbix fixed
icedove fixed
eucalyptus reuploaded into the archive, update itp entry


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-08-05 21:14:20 UTC (rev 19891)
+++ data/CVE/list	2012-08-06 08:01:08 UTC (rev 19892)
@@ -1510,7 +1510,7 @@
 	- openttd <unfixed> (low; bug #683258)
 CVE-2012-3435 [Zabbix SQL injection flaw]
 	RESERVED
-	- zabbix <unfixed> (bug #683273)
+	- zabbix 1:2.0.2+dfsg-1 (bug #683273)
 	NOTE: http://seclists.org/oss-sec/2012/q3/127
 CVE-2012-3434 [WordPress plugin Count Per Day XSS (SSCHADV2012-015)]
 	RESERVED
@@ -2049,9 +2049,9 @@
 CVE-2012-3242
 	RESERVED
 CVE-2012-3241 (The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not ...)
-	- eucalyptus <itp> (bug #680589)
+	- eucalyptus <not-affected> (Fixed before initial release)
 CVE-2012-3240 (The Walrus service in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 allows ...)
-	- eucalyptus <itp> (bug #680589)
+	- eucalyptus <not-affected> (Fixed before initial release)
 CVE-2012-3239
 	RESERVED
 CVE-2012-3238 (Cross-site scripting (XSS) vulnerability in the Backup/Restore ...)
@@ -5166,7 +5166,7 @@
 CVE-2012-1967 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...)
 	{DSA-2514-1 DSA-2513-1}
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1966 (Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do ...)
 	{DSA-2514-1}
@@ -5175,59 +5175,59 @@
 	- iceweasel 10.0.6esr-1
 CVE-2012-1964 (The certificate-warning functionality in ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1963 (The Content Security Policy (CSP) functionality in Mozilla Firefox 4.x ...)
 	- iceweasel 10.0.6esr-1
 	[squeeze] - iceweasel <not-affected> (CSP not yet available)
 	- icedove 10.0.5-1
 	[squeeze] - icedove <not-affected> (CSP not yet available)
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1962 (Use-after-free vulnerability in the JSDependentString::undepend ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1961 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1960 (The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS ...)
 	- iceweasel <not-affected> (Only affects Firefox > 10)
 CVE-2012-1959 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1958 (Use-after-free vulnerability in the nsGlobalWindow::PageHidden ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1957 (An unspecified parser-utility class in Mozilla Firefox 4.x through ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1956
 	RESERVED
 CVE-2012-1955 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1954 (Use-after-free vulnerability in the nsDocument::AdoptNode function in ...)
 	{DSA-2514-1 DSA-2513-1}
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1953 (The ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1952 (The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x through ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1951 (Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased ...)
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1950 (The drag-and-drop implementation in Mozilla Firefox 4.x through 13.0 ...)
 	{DSA-2514-1}
@@ -5237,7 +5237,7 @@
 CVE-2012-1948 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
 	{DSA-2514-1 DSA-2513-1}
 	- iceweasel 10.0.6esr-1
-	- icedove <unfixed>
+	- icedove 10.0.6-1
 	- iceape 2.7.6-1
 CVE-2012-1947 (Heap-based buffer overflow in the utf16_to_isolatin1 function in ...)
 	{DSA-2489-1 DSA-2488-1}

More information about the Secure-testing-commits mailing list