[Secure-testing-commits] r20549 - in data: CVE DSA

[Moritz Muehlenhoff]

Author: jmm
Date: 2012-11-26 14:11:08 +0000 (Mon, 26 Nov 2012)
New Revision: 20549

Modified:
   data/CVE/list
   data/DSA/list
Log:
evince already fixed in DSA-2357-1 by shipping the correct fix from the start


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-11-26 13:57:04 UTC (rev 20548)
+++ data/CVE/list	2012-11-26 14:11:08 UTC (rev 20549)
@@ -115,8 +115,8 @@
 	- tomcat6 6.0.35-5+nmu1 (bug #692439)
 	- tomcat7 7.0.28-3+nmu1 (bug #692440)
 CVE-2011-5244 (Multiple off-by-one errors in the (1) token and (2) linetoken ...)
-	TODO: check
-	NOTE: new vulnerability in afmparse.c?
+	- evince 2.32.0-1
+	NOTE: This issue was already fixed in DSA-2357-1 by shipping the correct fix from the start
 CVE-2012-5884 (The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 ...)
 	- bugzilla <removed> (low)
 	[squeeze] - bugzilla <not-affected> (vulnerable code not present in 3.x)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2012-11-26 13:57:04 UTC (rev 20548)
+++ data/DSA/list	2012-11-26 14:11:08 UTC (rev 20549)
@@ -723,7 +723,7 @@
 	{CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560}
 	[lenny] - openjdk-6 6b18-1.8.10-0~lenny2
 [03 Dec 2011] DSA-2357-1 evince - several
-	{CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643}
+	{CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2011-5244}
 	[lenny] - evince 2.22.2-4~lenny2
 [01 Dec 2011] DSA-2356-1 openjdk-6 - several
 	{CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560}