[Secure-testing-commits] r18724 - in data: . CVE DSA

Moritz Muehlenhoff jmm at alioth.debian.org
Wed Mar 21 10:09:34 UTC 2012 

Author: jmm
Date: 2012-03-21 10:09:33 +0000 (Wed, 21 Mar 2012)
New Revision: 18724

Modified:
   data/CVE/list
   data/DSA/list
   data/next-point-update.txt
   data/spu-candidates.txt
Log:
file CVEfied
libcap spu upload




Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-03-20 21:14:29 UTC (rev 18723)
+++ data/CVE/list	2012-03-21 10:09:33 UTC (rev 18724)
@@ -458,8 +458,10 @@
 	RESERVED
 CVE-2012-1572
 	RESERVED
-CVE-2012-1571
+CVE-2012-1571 [CDF crasher bugs in file, found by CERT/CC BFF tool]
 	RESERVED
+	- file <unfixed> (low)
+	[squeeze] - file 5.04-5+squeeze1
 CVE-2012-1570
 	RESERVED
 CVE-2012-1569
@@ -1019,9 +1021,6 @@
 	RESERVED
 CVE-2012-1297 (Multiple cross-site request forgery (CSRF) vulnerabilities in main.php ...)
 	NOT-FOR-US: Contao
-CVE-2012-XXXX [CDF crasher bugs in file, found by CERT/CC BFF tool]
-	- file <unfixed> (low)
-	[squeeze] - file 5.04-5+squeeze1
 CVE-2012-1296
 	RESERVED
 CVE-2012-1295

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2012-03-20 21:14:29 UTC (rev 18723)
+++ data/DSA/list	2012-03-21 10:09:33 UTC (rev 18724)
@@ -40,6 +40,7 @@
 [02 Mar 2012] DSA-2423-1 movabletype-opensource - several
 	[squeeze] - movabletype-opensource 4.3.8+dfsg-0+squeeze2
 [29 Feb 2012] DSA-2422-1 file - missing bounds check
+        {CVE-2012-1571}
 	[squeeze] - file 5.04-5+squeeze1
 [29 Feb 2012] DSA-2421-1 moodle - several
 	{CVE-2011-4308 CVE-2011-4584 CVE-2011-4585 CVE-2011-4586 CVE-2011-4587 CVE-2011-4588 CVE-2012-0792 CVE-2012-0793 CVE-2012-0794 CVE-2012-0795 CVE-2012-0796}

Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt	2012-03-20 21:14:29 UTC (rev 18723)
+++ data/next-point-update.txt	2012-03-21 10:09:33 UTC (rev 18724)
@@ -22,8 +22,6 @@
 	[squeeze] - tremulous 1.1.0-7~squeeze1
 CVE-2011-1784
 	[squeeze] - keepalived 1:1.1.20-1+squeeze1
+CVE-2011-4099
+	[squeeze] - libcap2 1:2.19-3
 
-
-
-
-

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2012-03-20 21:14:29 UTC (rev 18723)
+++ data/spu-candidates.txt	2012-03-21 10:09:33 UTC (rev 18724)
@@ -131,11 +131,6 @@
 
 --
 
-libcap2 (CVE-2011-4099)
-maintainer notified
-
---
-
 libxslt (CVE-2011-3970)
 #660650
 http://git.gnome.org/browse/libxslt/commit/?id=fe5a4fa33eb85bce3253ed3742b1ea6c4b59b41b

More information about the Secure-testing-commits mailing list