[Secure-testing-commits] r18414 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Feb 10 07:02:47 UTC 2012
Author: jmm
Date: 2012-02-10 07:02:47 +0000 (Fri, 10 Feb 2012)
New Revision: 18414
Modified:
data/CVE/list
Log:
apr CVEfied
two new PHP issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-02-09 21:44:14 UTC (rev 18413)
+++ data/CVE/list 2012-02-10 07:02:47 UTC (rev 18414)
@@ -425,6 +425,8 @@
RESERVED
CVE-2012-0840
RESERVED
+ - apr <unfixed> (low; bug #655435)
+ NOTE: Commit http://mail-archives.apache.org/mod_mbox/apr-commits/201201.mbox/%3C20120115003715.071D423888FD@eris.apache.org%3E seems to cause regressions
CVE-2012-0839 (OCaml 3.12.1 and earlier computes hash values without restricting the ...)
- ocaml <unfixed> (low)
CVE-2012-0838
@@ -444,6 +446,7 @@
RESERVED
CVE-2012-0831
RESERVED
+ - php5 <unfixed>
CVE-2012-0830 (The php_register_variable_ex function in php_variables.c in PHP 5.3.9 ...)
{DSA-2403-1}
- php5 5.3.10-1
@@ -576,6 +579,7 @@
RESERVED
CVE-2012-0788
RESERVED
+ - php5 <unfixed>
CVE-2012-0787
RESERVED
CVE-2012-0786
@@ -789,8 +793,6 @@
CVE-2010-XXXX [webkit info disclosure/segfault]
- webkit <unfixed> (low; bug #579136)
- chromium <not-affected>
-CVE-2011-XXXX [apr dos]
- - apr <unfixed> (low; bug #655435)
CVE-2012-0697 (HP StorageWorks P2000 G3 MSA array systems have a default account, ...)
NOT-FOR-US: HP StorageWorks
CVE-2012-0696 (Multiple cross-site scripting (XSS) vulnerabilities in the Executive ...)
More information about the Secure-testing-commits
mailing list