[Secure-testing-commits] r20556 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Nov 27 08:13:22 UTC 2012
Author: jmm
Date: 2012-11-27 08:13:21 +0000 (Tue, 27 Nov 2012)
New Revision: 20556
Modified:
data/CVE/list
Log:
new tor issue
new tomcat/slowloris issue
keystone CVEfied
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-11-27 08:04:04 UTC (rev 20555)
+++ data/CVE/list 2012-11-27 08:13:21 UTC (rev 20556)
@@ -208,8 +208,6 @@
CVE-2012-XXXX [opendnssec curl usage]
- opendnssec <not-affected> (eppclient not built in Debian package)
NOTE: http://lists.opendnssec.org/pipermail/opendnssec-user/2012-November/002296.html
-CVE-2012-XXXX
- - keystone 2012.1.1-11 (bug #694433)
CVE-2012-XXXX [gimp: memory corruption vulnerability]
- gimp <unfixed> (bug #693977)
NOTE: Upstream fix http://git.gnome.org/browse/gimp/commit/?id=2873262fccba12af144ed96ed91be144d92ff2e1
@@ -1050,18 +1048,25 @@
RESERVED
CVE-2012-5573
RESERVED
+ - tor 0.2.3.25-1
CVE-2012-5572 [Dancer::Cookie: Cookie name CRLF injection]
RESERVED
- libdancer-perl <unfixed> (bug #694279)
NOTE: https://github.com/sukria/Dancer/issues/859
CVE-2012-5571
RESERVED
+ - keystone 2012.1.1-11 (bug #694433)
CVE-2012-5570
RESERVED
CVE-2012-5569
RESERVED
CVE-2012-5568
RESERVED
+ - tomcat6 <unfixed> (low)
+ [squeeze] - tomcat6 <no-dsa> (Minor issue)
+ [wheezy] - tomcat6 <no-dsa> (Minor issue)
+ - tomcat7 <unfixed> (low)
+ [wheezy] - tomcat7 <no-dsa> (Minor issue)
CVE-2012-5567
RESERVED
- kronolith2 <not-affected> (Vulnerable code not present in 2.x codebase and later versions not yet packaged in sid)
More information about the Secure-testing-commits
mailing list