[Secure-testing-commits] r19522 - data/CVE

[Luk Claes]

Author: luk
Date: 2012-06-17 15:55:00 +0000 (Sun, 17 Jun 2012)
New Revision: 19522

Modified:
   data/CVE/list
Log:
mark libspring-security-2.0-java issues as fixed, mark libspring-2.5-java issue as affected by cloned bug

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-06-17 15:50:29 UTC (rev 19521)
+++ data/CVE/list	2012-06-17 15:55:00 UTC (rev 19522)
@@ -15181,8 +15181,7 @@
 	{DSA-2293-1}
 	- libxfont 1:1.4.4-1
 CVE-2011-2894 (Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through ...)
-	- libspring-security-2.0-java <unfixed> (bug #670901)
-	- libspring-java <unfixed> (bug #670901)
+	- libspring-security-2.0-java 2.0.7.RELEASE-1 (bug #670901)
 CVE-2011-2893 (The DataPilot feature in IBM Lotus Symphony 3 before FP3 allows ...)
 	NOT-FOR-US: IBM Lotus Symphony
 CVE-2011-2892 (Joomla! 1.6.x before 1.6.2 does not prevent page rendering inside a ...)
@@ -15736,13 +15735,13 @@
 	NOT-FOR-US: EMC RSA Adaptive Authentication On-Premise
 CVE-2011-2732
 	RESERVED
-	- libspring-security-2.0-java <unfixed> (bug #670901)
+	- libspring-security-2.0-java 2.0.7.RELEASE-1 (bug #670901)
 CVE-2011-2731
 	RESERVED
-	- libspring-security-2.0-java <unfixed> (bug #670901)
+	- libspring-security-2.0-java 2.0.7.RELEASE-1 (bug #670901)
 CVE-2011-2730
 	RESERVED
-	- libspring-2.5-java <unfixed> (bug #670901)
+	- libspring-2.5-java <unfixed> (bug #677814)
 CVE-2011-2729 (native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 ...)
 	- commons-daemon 1.0.7-1
 	[squeeze] - commons-daemon <not-affected> (Support for libcap was only added in 1.0.6)