[Secure-testing-commits] r19996 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Aug 21 06:17:07 UTC 2012
Author: jmm
Date: 2012-08-21 06:17:07 +0000 (Tue, 21 Aug 2012)
New Revision: 19996
Modified:
data/CVE/list
Log:
graphicsmagick fixed
filed bugs for roundcube and pcp
new kernel issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-08-20 21:14:21 UTC (rev 19995)
+++ data/CVE/list 2012-08-21 06:17:07 UTC (rev 19996)
@@ -1806,19 +1806,21 @@
RESERVED
CVE-2012-3511
RESERVED
+ - linux <unfixed>
+ - linux-2.6 <removed>
CVE-2012-3510
RESERVED
+ - linux 2.6.20-1
+ - linux-2.6 2.6.20-1
CVE-2012-3509
RESERVED
CVE-2012-3508 [SA50279: roundcube multiple XSS]
RESERVED
- - roundcube <unfixed>
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/08/20/2
+ - roundcube <unfixed> (bug #685475)
NOTE: http://trac.roundcube.net/ticket/1488613
CVE-2012-3507 [SA50212: roundcube 0.8 XSS]
RESERVED
- roundcube <not-affected> (only affects rc versions of 0.8)
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/08/20/2
NOTE: http://trac.roundcube.net/ticket/1488519
CVE-2012-3506
RESERVED
@@ -2013,7 +2015,7 @@
CVE-2012-3439
RESERVED
CVE-2012-3438 (The Magick_png_malloc function in coders/png.c in GraphicsMagick ...)
- - graphicsmagick <unfixed> (low; bug #683284)
+ - graphicsmagick 1.3.16-1.1 (low; bug #683284)
[squeeze] - graphicsmagick <no-dsa> (Minor issue)
CVE-2012-3437 (The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8-6 ...)
- imagemagick 8:6.7.7.10-3 (low; bug #683285)
@@ -2063,16 +2065,16 @@
- icedtea-web <unfixed>
CVE-2012-3421 [pcp: incorrect event-driven programming]
RESERVED
- - pcp <unfixed>
+ - pcp <unfixed> (bug #685476)
CVE-2012-3420 [pcp: memory leaks]
RESERVED
- - pcp <unfixed>
+ - pcp <unfixed> (bug #685476)
CVE-2012-3419 [pcp: information disclosure]
RESERVED
- - pcp <unfixed>
+ - pcp <unfixed> (bug #685476)
CVE-2012-3418 [pcp: multiple integer and heap-based overflows]
RESERVED
- - pcp <unfixed>
+ - pcp <unfixed> (bug #685476)
CVE-2012-3417 (The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota ...)
- quota 4.00~pre1-1
NOTE: this is at least fixed in 4.00, I could not trace this back to an exact version
More information about the Secure-testing-commits
mailing list