[Secure-testing-commits] r19581 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sun Jun 24 21:14:22 UTC 2012 

Author: joeyh
Date: 2012-06-24 21:14:22 +0000 (Sun, 24 Jun 2012)
New Revision: 19581

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-06-24 20:52:40 UTC (rev 19580)
+++ data/CVE/list	2012-06-24 21:14:22 UTC (rev 19581)
@@ -1740,6 +1740,7 @@
 	NOT-FOR-US: OSCommerce Online Merchant
 CVE-2012-2934
 	RESERVED
+	{DSA-2501-1}
 	NOT-FOR-US: Support Incident Tracker
 CVE-2012-2933
 	RESERVED
@@ -2266,6 +2267,7 @@
 CVE-2012-2693 (libvirt, possibly before 0.9.12, does not properly assign USB devices ...)
 	- libvirt 0.9.12-1 (bug #677496)
 CVE-2012-2692 (MantisBT before 1.2.11 does not check the delete_attachments_threshold ...)
+	{DSA-2500-1}
 	- mantis 1.2.11-1 (bug #676783)
 CVE-2012-2691 (The mc_issue_note_update function in the SOAP API in MantisBT before ...)
 	- mantis 1.2.11-1 (bug #676783)
@@ -2875,6 +2877,7 @@
 CVE-2012-2418 (Heap-based buffer overflow in the intu-help-qb (aka Intuit Help System ...)
 	NOT-FOR-US: Intuit
 CVE-2012-2417 (PyCrypto before 2.6 does not produce appropriate prime numbers when ...)
+	{DSA-2502-1}
 	- python-crypto 2.6-1
 	NOTE: https://bugs.launchpad.net/pycrypto/+bug/985164
 CVE-2012-2413
@@ -4276,14 +4279,15 @@
 CVE-2012-1941 (Heap-based buffer overflow in the ...)
 	- iceweasel 10.0.5esr-1
 CVE-2012-1940 (Use-after-free vulnerability in the nsFrameList::FirstChild function ...)
-	{DSA-2489-1 DSA-2488-1}
+	{DSA-2499-1 DSA-2489-1 DSA-2488-1}
 	- iceweasel 10.0.5esr-1
 CVE-2012-1939 (jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ...)
+	{DSA-2499-1}
 	- iceweasel 10.0.5esr-1
 CVE-2012-1938 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
 	- iceweasel <not-affected> (Only affects iceweasel from experimental)
 CVE-2012-1937 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
-	{DSA-2489-1 DSA-2488-1}
+	{DSA-2499-1 DSA-2489-1 DSA-2488-1}
 	- iceweasel 10.0.5esr-1
 CVE-2012-1936 (** DISPUTED ** The wp_create_nonce function in ...)
 	NOT-FOR-US: Disputed Wordpress issue
@@ -6182,9 +6186,11 @@
 	NOT-FOR-US: phxEventManager not in Debian
 CVE-2012-1123
 	RESERVED
+	{DSA-2500-1}
 	- mantis 1.2.10-1 (bug #662858)
 CVE-2012-1122
 	RESERVED
+	{DSA-2500-1}
 	- mantis 1.2.10-1 (low; bug #669927)
 CVE-2012-1121
 	RESERVED
@@ -6192,12 +6198,15 @@
 	[squeeze] - mantis <not-affected> (according to maintainer)
 CVE-2012-1120
 	RESERVED
+	{DSA-2500-1}
 	- mantis 1.2.10-1 (low; bug #669925)
 CVE-2012-1119
 	RESERVED
+	{DSA-2500-1}
 	- mantis 1.2.10-1 (low; bug #669928)
 CVE-2012-1118
 	RESERVED
+	{DSA-2500-1}
 	- mantis 1.2.10-1 (low; bug #669924)
 CVE-2012-1117
 	RESERVED
@@ -9205,8 +9214,10 @@
 	NOTE: http://www.dest-unreach.org/socat/contrib/socat-secadv3.html
 CVE-2012-0218
 	RESERVED
+	{DSA-2501-1}
 	- xen 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1
 CVE-2012-0217 (The User Mode Scheduler in the kernel in Microsoft Windows Server 2008 ...)
+	{DSA-2501-1}
 	- xen 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1
 	- kfreebsd-8 8.3-4 (bug #677297)
 	- kfreebsd-9 9.0-4 (bug #677298)

More information about the Secure-testing-commits mailing list