[Secure-testing-commits] r19540 - in data: CVE DSA
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jun 20 15:01:12 UTC 2012
Author: jmm
Date: 2012-06-20 15:01:12 +0000 (Wed, 20 Jun 2012)
New Revision: 19540
Modified:
data/CVE/list
data/DSA/list
Log:
new mysql issues (one issue already fixed in DSA)
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-06-20 14:12:23 UTC (rev 19539)
+++ data/CVE/list 2012-06-20 15:01:12 UTC (rev 19540)
@@ -586,9 +586,9 @@
CVE-2012-3290 (Multiple unspecified vulnerabilities in Google Chrome before ...)
NOT-FOR-US: Chrome books
CVE-2012-3289 (VMware Workstation 8.x before 8.0.4, VMware Player 4.x before 4.0.4, ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2012-3288 (VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2012-3287 (Poul-Henning Kamp md5crypt has insufficient algorithmic complexity and ...)
NOT-FOR-US: md5crypt
CVE-2012-3286
@@ -1250,7 +1250,7 @@
CVE-2012-2960
RESERVED
CVE-2012-2959 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: BMC
CVE-2012-2958
RESERVED
CVE-2012-2957
@@ -1693,8 +1693,11 @@
RESERVED
CVE-2012-2750
RESERVED
+ - mysql-5.5 5.5.24+dfsg-1
CVE-2012-2749
RESERVED
+ - mysql-5.1 <unfixed>
+ - mysql-5.5 5.5.24+dfsg-1
CVE-2012-2748 [Joomla! Core - Information Disclosure 471-20120602-core-information-disclosure.html]
RESERVED
- joomla <itp> (bug #571794)
@@ -1992,15 +1995,15 @@
CVE-2012-2636
RESERVED
CVE-2012-2635 (The Dolphin Browser HD application before 7.6 and Dolphin for Pad ...)
- TODO: check
+ NOT-FOR-US: Dolphin
CVE-2012-2634 (Cross-site scripting (XSS) vulnerability in FeedDemon before 4.0, when ...)
- TODO: check
+ NOT-FOR-US: FeedDemon
CVE-2012-2633 (Cross-site scripting (XSS) vulnerability in wassup.php in the WassUp ...)
- TODO: check
+ NOT-FOR-US: WassUp
CVE-2012-2632 (SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 ...)
- TODO: check
+ NOT-FOR-US: SEIL routers
CVE-2012-2631 (Cross-site scripting (XSS) vulnerability in WEBLOGIC @WEB ShoppingCart ...)
- TODO: check
+ NOT-FOR-US: WEBLOGIC
CVE-2012-2630 (The Puella Magi Madoka Magica iP application 1.05 and earlier for ...)
NOT-FOR-US: Puella Magi Madoka Magica iP (Android application)
CVE-2012-2629
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2012-06-20 14:12:23 UTC (rev 19539)
+++ data/DSA/list 2012-06-20 15:01:12 UTC (rev 19540)
@@ -1,5 +1,5 @@
[18 Jun 2012] DSA-2496-1 mysql-5.1 - several
- {CVE-2012-0583 CVE-2012-1688 CVE-2012-1690 CVE-2012-1703 CVE-2012-2122}
+ {CVE-2012-0583 CVE-2012-1688 CVE-2012-1690 CVE-2012-1703 CVE-2012-2122 CVE-2012-2749}
[squeeze] - mysql-5.1 5.1.63-0+squeeze1
[16 Jun 2012] DSA-2495-1 openconnect - buffer overflow
{CVE-2012-3291}
More information about the Secure-testing-commits
mailing list