[Secure-testing-commits] r18416 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2012-02-10 16:47:41 +0000 (Fri, 10 Feb 2012)
New Revision: 18416

Modified:
   data/CVE/list
Log:
surf CVEfied
various bugnums


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-10 16:42:01 UTC (rev 18415)
+++ data/CVE/list	2012-02-10 16:47:41 UTC (rev 18416)
@@ -1,5 +1,3 @@
-CVE-2012-XXXX [surf info leak]
-	- surf <unfixed> (bug #659296)
 CVE-2012-1038
 	RESERVED
 CVE-2012-1037
@@ -47,7 +45,7 @@
 CVE-2012-1018 (Cross-site scripting (XSS) vulnerability in includes/convert.php in ...)
 	NOT-FOR-US: Joomla addon
 CVE-2012-1017 (Multiple SQL injection vulnerabilities in base_qry_main.php in Basic ...)
-	- acidbase <unfixed>
+	- acidbase <unfixed> (bug #659287)
 CVE-2012-1016
 	RESERVED
 CVE-2012-1015
@@ -71,7 +69,7 @@
 CVE-2012-1008 (OfficeSIP Server 3.1 allows remote attackers to cause a denial of ...)
 	NOT-FOR-US: OfficeSIP Server
 CVE-2012-1007 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
-	- libstruts1.2-java <unfixed>
+	- libstruts1.2-java <unfixed> (bug #657870)
 CVE-2012-1006 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
 	- libstruts1.2-java <not-affected> (Only affects Struts 2)
 CVE-2012-1005 (Multiple cross-site scripting (XSS) vulnerabilities in Sphinx Software ...)
@@ -423,8 +421,9 @@
 	RESERVED
 CVE-2012-0843
 	RESERVED
-CVE-2012-0842
+CVE-2012-0842 [surf info leak]
 	RESERVED
+	- surf <unfixed> (bug #659296)
 CVE-2012-0841
 	RESERVED
 CVE-2012-0840
@@ -432,7 +431,7 @@
 	- apr <unfixed> (low; bug #655435)
 	NOTE: Commit http://mail-archives.apache.org/mod_mbox/apr-commits/201201.mbox/%3C20120115003715.071D423888FD@eris.apache.org%3E seems to cause regressions
 CVE-2012-0839 (OCaml 3.12.1 and earlier computes hash values without restricting the ...)
-	- ocaml <unfixed> (low)
+	- ocaml <unfixed> (low; bug #659149)
 CVE-2012-0838
 	RESERVED
 CVE-2012-0837