[Secure-testing-commits] r19287 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon May 21 20:22:57 UTC 2012


Author: jmm
Date: 2012-05-21 20:22:56 +0000 (Mon, 21 May 2012)
New Revision: 19287

Modified:
   data/CVE/list
Log:
qpid fixed, one issue not-affected
libzip fixed
filed bug for sudo


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-21 20:21:48 UTC (rev 19286)
+++ data/CVE/list	2012-05-21 20:22:56 UTC (rev 19287)
@@ -1016,7 +1016,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/05/11/1
 CVE-2012-2337
 	RESERVED
-	- sudo <unfixed>
+	- sudo <unfixed> (bug #673766)
 CVE-2012-2336 (sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when ...)
 	- php5 5.4.3 (unimportant)
 	NOTE: Rather harmless bug
@@ -1487,7 +1487,7 @@
 	- elixir <unfixed> (low; bug #670919)
 CVE-2012-2145 [qpid DoS]
 	RESERVED
-	- qpid-cpp <unfixed> (bug #672124)
+	- qpid-cpp 0.16-1 (bug #672124)
 CVE-2012-2144 [OSSA 2012-006: Horizon session fixation and reuse]
 	RESERVED
 	- horizon 2012.1-4 (bug #671604)
@@ -3786,10 +3786,10 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/03/12/4
 CVE-2012-1163
 	RESERVED
-	- libzip <unfixed> (bug #664990)
+	- libzip 0.10.1-1 (bug #664990)
 CVE-2012-1162
 	RESERVED
-	- libzip <unfixed> (bug #664990)
+	- libzip 0.10.1-1 (bug #664990)
 CVE-2012-1161
 	RESERVED
 	- moodle <not-affected> (Only affects 2.1 to 2.2)
@@ -11146,7 +11146,7 @@
 	RESERVED
 	NOT-FOR-US: fluxbb
 CVE-2011-3620 (Apache Qpid 0.12 does not properly verify credentials during the ...)
-	- qpid-cpp <unfixed> (bug #672124)
+	- qpid-cpp <not-affected> (Red Hat-specific extension, see bug #672124)
 CVE-2011-3619
 	RESERVED
 	- linux-2.6 3.0.0-1 




More information about the Secure-testing-commits mailing list