[Secure-testing-commits] r20588 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Sun Dec 2 19:14:27 UTC 2012 

Author: jmm
Date: 2012-12-02 19:14:26 +0000 (Sun, 02 Dec 2012)
New Revision: 20588

Modified:
   data/CVE/list
Log:
libv8 bugnum
tweepy, plib no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-02 14:51:13 UTC (rev 20587)
+++ data/CVE/list	2012-12-02 19:14:26 UTC (rev 20588)
@@ -772,6 +772,7 @@
 	NOT-FOR-US: Moneris eSelectPlus 2.03 PHP API
 CVE-2012-5825 (Tweepy does not verify that the server hostname matches a domain name ...)
 	- tweepy <unfixed> (low; bug #692444)
+	[wheezy] - tweepy <no-dsa> (Minor issue)
 CVE-2012-5824 (Trillian 5.1.0.19 does not verify that the server hostname matches a ...)
 	NOT-FOR-US: Trillian
 CVE-2012-5823 (Open Source Classifieds does not verify that the server hostname ...)
@@ -2447,7 +2448,7 @@
 CVE-2012-5129
 	RESERVED
 CVE-2012-5128 (Google V8 before 3.13.7.5, as used in Google Chrome before ...)
-	- libv8 <unfixed>
+	- libv8 <unfixed> (bug #694808)
 CVE-2012-5127 (Integer overflow in Google Chrome before 23.0.1271.64 allows remote ...)
 	- chromium-browser <unfixed>
 CVE-2012-5126 (Use-after-free vulnerability in Google Chrome before 23.0.1271.64 ...)
@@ -2463,7 +2464,7 @@
 CVE-2012-5121 (Use-after-free vulnerability in Google Chrome before 23.0.1271.64 ...)
 	- chromium-browser <unfixed>
 CVE-2012-5120 (Google V8 before 3.13.7.5, as used in Google Chrome before ...)
-	- libv8 <unfixed>
+	- libv8 <unfixed> (bug #694808)
 CVE-2012-5119 (Race condition in Pepper, as used in Google Chrome before ...)
 	- chromium-browser <unfixed>
 CVE-2012-5118 (Google Chrome before 23.0.1271.64 on Mac OS X does not properly ...)
@@ -4177,7 +4178,9 @@
 	- drupal6 <not-affected> (according to upstream)
 	NOTE: http://drupal.org/node/1815912
 CVE-2012-4552 (Stack-based buffer overflow in the error function in ssg/ssgParser.cxx ...)
-	- plib <unfixed>
+	- plib <unfixed> (low)
+	[squeeze] - plib <no-dsa> (Minor issue)
+	[wheezy] - plib <no-dsa> (Minor issue)
 CVE-2012-4551
 	RESERVED
 	NOT-FOR-US: libunity-webapps

More information about the Secure-testing-commits mailing list