[Secure-testing-commits] r20493 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Nov 15 09:10:49 UTC 2012
Author: jmm
Date: 2012-11-15 09:10:48 +0000 (Thu, 15 Nov 2012)
New Revision: 20493
Modified:
data/CVE/list
Log:
one horizon issue fixed
one horizon issue not-affected
new keystone issue doesn't affect Debian
thanks to zigo for quick reaction
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-11-15 07:09:51 UTC (rev 20492)
+++ data/CVE/list 2012-11-15 09:10:48 UTC (rev 20493)
@@ -888,6 +888,7 @@
RESERVED
CVE-2012-5483
RESERVED
+ - keystone <not-affected> (Debian packaging enforces correct permissions)
CVE-2012-5482 (The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex ...)
- glance 2012.1.1-3 (bug #692641)
CVE-2012-5481
@@ -907,7 +908,7 @@
RESERVED
CVE-2012-5476
RESERVED
- - horizon <unfixed>
+ - horizon <not-affected> (File is installed with 0700 perms in Debian)
CVE-2012-5475 [YUI 2.x security issue regarding embedded SWF files]
RESERVED
- yui <unfixed> (bug #692434)
@@ -915,7 +916,7 @@
NOTE: http://www.yuiblog.com/blog/2012/10/30/security-announcement-swf-vulnerability-in-yui-2/
CVE-2012-5474
RESERVED
- - horizon <unfixed>
+ - horizon 2012.1.1-7
CVE-2012-5473
RESERVED
- moodle 2.2.3.dfsg-2.6
More information about the Secure-testing-commits
mailing list