[Secure-testing-commits] r18070 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Sun Jan 8 15:33:45 UTC 2012


Author: jmm
Date: 2012-01-08 15:33:45 +0000 (Sun, 08 Jan 2012)
New Revision: 18070

Modified:
   data/CVE/list
Log:
new znc issue
libv8 fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-01-07 21:14:16 UTC (rev 18069)
+++ data/CVE/list	2012-01-08 15:33:45 UTC (rev 18070)
@@ -1,3 +1,7 @@
+CVE-2012-XXXX [znc bouncedcc DoS]
+	- znc 0.202-2
+	[squeeze] - znc <not-affected> (Only affects 0.200 and 0.202)
+	[lenny] - znc <not-affected> (Only affects 0.200 and 0.202)
 CVE-2012-0390 (The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain ...)
 	TODO: check
 CVE-2012-0389
@@ -347,7 +351,7 @@
 CVE-2011-5038 (SQL injection vulnerability in hitCode hitAppoint 4.5.17 and possibly ...)
 	NOT-FOR-US: hitAppoint (not in Debian)
 CVE-2011-5037 (Google V8 computes hash values for form parameters without restricting ...)
-	- libv8 <unfixed> (bug #653962)
+	- libv8 3.6.6.14-2 (bug #653962)
 CVE-2011-5036 (Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes ...)
 	- ruby-rack <unfixed> (bug #653962)
 CVE-2011-5035 (Oracle Glassfish 3.1.1 and earlier computes hash values for form ...)




More information about the Secure-testing-commits mailing list