[Secure-testing-commits] r19906 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Aug 6 21:14:18 UTC 2012 

Author: joeyh
Date: 2012-08-06 21:14:17 +0000 (Mon, 06 Aug 2012)
New Revision: 19906

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-08-06 20:25:38 UTC (rev 19905)
+++ data/CVE/list	2012-08-06 21:14:17 UTC (rev 19906)
@@ -413,7 +413,7 @@
 CVE-2012-3955
 	RESERVED
 CVE-2012-3954 (Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and ...)
-	{DSA-2519-2}
+	{DSA-2519-2 DSA-2519-1 DSA-2516-1}
 	- isc-dhcp <unfixed>
 	NOTE: https://kb.isc.org/article/AA-00737
 CVE-2012-3953
@@ -1214,7 +1214,7 @@
 CVE-2011-5094 (** DISPUTED ** Mozilla Network Security Services (NSS) 3.x, with ...)
 	NOTE: Disputed NSS issue
 CVE-2012-3571 (ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows ...)
-	{DSA-2519-2}
+	{DSA-2519-2 DSA-2519-1 DSA-2516-1}
 	- isc-dhcp <unfixed>
 	NOTE: https://kb.isc.org/article/AA-00712
 CVE-2012-3570 (Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is ...)
@@ -1517,6 +1517,7 @@
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 CVE-2012-3436 [OpenTTD DoS]
 	RESERVED
+	{DSA-2524-1}
 	- openttd <unfixed> (low; bug #683258)
 CVE-2012-3435 [Zabbix SQL injection flaw]
 	RESERVED
@@ -1956,6 +1957,7 @@
 CVE-2012-3293
 	RESERVED
 CVE-2012-3292 (The GridFTP in Globus Toolkit (GT) before 5.2.2, when certain autoconf ...)
+	{DSA-2523-1}
 	- globus-gridftp-server 6.5-1
 CVE-2012-3291 (Heap-based buffer overflow in OpenConnect 3.18 allows remote servers ...)
 	{DSA-2495-1}
@@ -7140,6 +7142,7 @@
 	- openoffice.org 1:3.3.0-1
 	NOTE: Since 3.3.0 openoffice.org is a transitional source package to migrate to libreoffice
 CVE-2012-1148 (Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat ...)
+	{DSA-2525-1}
 	- expat 2.1.0~beta3-1 (bug #663579)
 	NOTE: memory leak
 CVE-2012-1147 (readfilemap.c in expat before 2.1.0 allows context-dependent attackers ...)
@@ -7832,6 +7835,7 @@
 CVE-2012-0877
 	RESERVED
 CVE-2012-0876 (The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values ...)
+	{DSA-2525-1}
 	- expat 2.1.0~beta3-1 (bug #663579)
 	- python2.6 2.6.8-0.1
 	- python2.7 <unfixed>
@@ -10973,6 +10977,7 @@
 	NOTE: http://www.openssl.org/news/secadv_20120118.txt
 CVE-2012-0049
 	RESERVED
+	{DSA-2524-1}
 	- openttd 1.1.5-1 (low)
 	NOTE: http://vcs.openttd.org/svn/changeset/23764
 	NOTE: http://security.openttd.org/en/CVE-2012-0049
@@ -11518,7 +11523,7 @@
 CVE-2011-4540 (Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open ...)
 	NOT-FOR-US: AtMail
 CVE-2011-4539 (dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 ...)
-	{DSA-2519-2}
+	{DSA-2519-2 DSA-2519-1}
 	- dhcp3 <not-affected> (Only affects DHCP 4.x)
 	- isc-dhcp 4.2.2.dfsg.1-5 (bug #652259; low)
 CVE-2011-4538

More information about the Secure-testing-commits mailing list