[Secure-testing-commits] r19471 - in data: . CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Jun 12 09:06:04 UTC 2012 

Author: jmm
Date: 2012-06-12 09:06:03 +0000 (Tue, 12 Jun 2012)
New Revision: 19471

Modified:
   data/CVE/list
   data/spu-candidates.txt
Log:
mpack no-dsa
NFU: Flash and various libc implementations
new mojarra issue
new boost issue
new libgc issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-06-12 08:30:24 UTC (rev 19470)
+++ data/CVE/list	2012-06-12 09:06:03 UTC (rev 19471)
@@ -1356,16 +1356,23 @@
 	RESERVED
 CVE-2012-2677
 	RESERVED
+	- boost1.42 <removed>
+	- boost1.49 <unfixed> (bug #677197)
 CVE-2012-2676
 	RESERVED
+	NOT-FOR-US: Hoard memory allocator
 CVE-2012-2675
 	RESERVED
+	NOT-FOR-US: nedmalloc
 CVE-2012-2674
 	RESERVED
+	NOT-FOR-US: Android libc
 CVE-2012-2673
 	RESERVED
+	- libgc <unfixed> (bug #677195)
 CVE-2012-2672
 	RESERVED
+	- mojarra <unfixed> (bug #677194)
 CVE-2012-2671
 	RESERVED
 	NOT-FOR-US: rake-cache
@@ -3110,16 +3117,22 @@
 	RESERVED
 CVE-2012-2039
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2038
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2037
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2036
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2035
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2034
 	RESERVED
+	NOT-FOR-US: Adobe Flash
 CVE-2012-2033 (Adobe Shockwave Player before 11.6.5.635 allows attackers to execute ...)
 	NOT-FOR-US: Adobe Shockwave Player
 CVE-2012-2032 (Adobe Shockwave Player before 11.6.5.635 allows attackers to execute ...)
@@ -7839,6 +7852,7 @@
 CVE-2011-4919 [mpack info disclosure]
 	RESERVED
 	- mpack 1.6-4 (low; bug #655971)
+	[squeeze] - mpack <no-dsa> (Minor issue)
 	NOTE: http://openwall.com/lists/oss-security/2011/12/31/1
 CVE-2011-4918
 	RESERVED

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2012-06-12 08:30:24 UTC (rev 19470)
+++ data/spu-candidates.txt	2012-06-12 09:06:03 UTC (rev 19471)
@@ -257,7 +257,11 @@
 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-25185
 suggested spu in bug report
 
+--
 
+mpack (CVE-2011-4919)
+#655971
+
 --
 
 namazu2 (CVE-2011-4345)

More information about the Secure-testing-commits mailing list