[Secure-testing-commits] r19143 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2012-05-04 13:56:48 +0000 (Fri, 04 May 2012)
New Revision: 19143

Modified:
   data/CVE/list
   data/spu-candidates.txt
Log:
csound fixed, no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-04 13:53:57 UTC (rev 19142)
+++ data/CVE/list	2012-05-04 13:56:48 UTC (rev 19143)
@@ -855,16 +855,16 @@
 	NOT-FOR-US: wordpress buddypress plugin
 CVE-2012-2108
 	RESERVED
-	- csound <unfixed> (bug #661197)
-	TODO: check if they were actually fixed
+	- csound 1:5.17.6~dfsg-1 (low; bug #661197)
+	[squeeze] - csound <no-dsa> (Minor issue)
 CVE-2012-2107
 	RESERVED
-	- csound <unfixed> (bug #661197)
-	TODO: check if they were actually fixed
+	- csound 1:5.17.6~dfsg-1 (bug #661197)
+	[squeeze] - csound <no-dsa> (Minor issue)
 CVE-2012-2106
 	RESERVED
-	- csound <unfixed> (bug #661197)
-	TODO: check if they were actually fixed
+	- csound 1:5.17.6~dfsg-1 (bug #661197)
+	[squeeze] - csound <no-dsa> (Minor issue)
 CVE-2012-2105
 	RESERVED
 	NOT-FOR-US: tsheetx
@@ -5459,7 +5459,8 @@
 	RESERVED
 CVE-2012-0270 [csound buffer overflows]
 	RESERVED
-	- csound 1:5.16.6~dfsg-1 (bug #661197)
+	- csound 1:5.16.6~dfsg-1 (low; bug #661197)
+	[squeeze] - csound <no-dsa> (Minor issue)
 	NOTE: http://secunia.com/secunia_research/2012-3/
 	NOTE: http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=7d617a9551fb6c552ba16874b71266fcd90f3a6f
 CVE-2012-0269 (Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 ...)

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2012-05-04 13:53:57 UTC (rev 19142)
+++ data/spu-candidates.txt	2012-05-04 13:56:48 UTC (rev 19143)
@@ -61,7 +61,15 @@
 cifs-utils (CVE-2012-1586)
 #665923
 
+--
 
+csound (CVE-2012-0270, CVE-2012-2108, CVE-2012-2107, CVE-2012-2106)
+http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commit;h=61d1df45ca9a52bab62892a3c3a13c41e6384505 (CVE-2012-2108)
+http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=61d1df45ca9a52bab62892a3c3a13c41e6384505#patch2
+http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=blobdiff;f=util/pv_import.c;h=4766dbff22510675a444dd242d432292893949c9;hp=811fccf0a04ec39964710fae509b601fdc330852;hb=7d617a9551fb6c552ba16874b71266fcd90f3a6f;hpb=5fbf93d9f6dc21b9e4e085b26b724ba73c2f1c01
+http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=61d1df45ca9a52bab62892a3c3a13c41e6384505#patch3
+http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=7d617a9551fb6c552ba16874b71266fcd90f3a6f
+
 --
 
 dokuwiki (CVE-2012-2129)