[Secure-testing-commits] r18386 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Feb 6 09:14:24 UTC 2012 

Author: joeyh
Date: 2012-02-06 09:14:24 +0000 (Mon, 06 Feb 2012)
New Revision: 18386

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-06 08:56:10 UTC (rev 18385)
+++ data/CVE/list	2012-02-06 09:14:24 UTC (rev 18386)
@@ -3041,6 +3041,7 @@
 	RESERVED
 	NOT-FOR-US: golismero not in Debian
 CVE-2012-0053 (protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not ...)
+	{DSA-2405-1}
 	- apache2 2.2.22-1 (low)
 CVE-2012-0052
 	RESERVED
@@ -3118,6 +3119,7 @@
 CVE-2012-0032
 	RESERVED
 CVE-2012-0031 (scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow ...)
+	{DSA-2405-1}
 	- apache2 2.2.22-1 (low)
 CVE-2012-0030 (Nova 2011.3 and Essex, when using the OpenStack API, allows remote ...)
 	- nova <unfixed>
@@ -4204,6 +4206,7 @@
 	- dovecot <unfixed> (unimportant; bug #649511)
 	NOTE: Additional hardening
 CVE-2011-4317 (The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, ...)
+	{DSA-2405-1}
 	- apache2 2.2.21-3
 	NOTE: Related to CVE-2011-3368 and CVE-2011-3639 but a different issue
 CVE-2011-4316
@@ -6372,6 +6375,7 @@
 	[squeeze] - chromium-browser <no-dsa> (attacker needs to get malicious file into cwd first)
 	NOTE: http://seclists.org/fulldisclosure/2011/Oct/734
 CVE-2011-3639 (The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 ...)
+	{DSA-2405-1}
 	- apache2 2.2.18-1
 	NOTE: Related to CVE-2011-3368 and CVE-2011-4317 but a different issue
 CVE-2011-3638
@@ -6476,6 +6480,7 @@
 CVE-2011-3608
 	RESERVED
 CVE-2011-3607 (Integer overflow in the ap_pregsub function in server/util.c in the ...)
+	{DSA-2405-1}
 	- apache2 2.2.21-4
 CVE-2011-3606 [DOM based XSS in the JBoss AS 7 administration console]
 	RESERVED
@@ -7188,6 +7193,7 @@
 	[lenny] - etherape <no-dsa> (Minor issue)
 	[squeeze] - etherape 0.9.8-1+squeeze1
 CVE-2011-3368 (The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, ...)
+	{DSA-2405-1}
 	- apache2 2.2.21-2 (medium)
 	NOTE: http://article.gmane.org/gmane.comp.apache.announce/61
 CVE-2011-3367 (Arora, possibly 0.11 and other versions, does not use a certain font ...)

More information about the Secure-testing-commits mailing list