[Secure-testing-commits] r20265 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Oct 1 07:41:07 UTC 2012
Author: jmm
Date: 2012-10-01 07:41:06 +0000 (Mon, 01 Oct 2012)
New Revision: 20265
Modified:
data/CVE/list
Log:
dbus fixed
gnugk fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-10-01 07:32:51 UTC (rev 20264)
+++ data/CVE/list 2012-10-01 07:41:06 UTC (rev 20265)
@@ -4139,7 +4139,7 @@
CVE-2012-3535 (Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote ...)
- openjpeg <unfixed> (bug #685970)
CVE-2012-3534 (GNU Gatekeeper before 3.1 does not limit the number of connections to ...)
- - gnugk <unfixed> (bug #685969)
+ - gnugk 2:3.0.2-3 (bug #685969)
CVE-2012-3533 (The python SDK before 3.1.0.6 and CLI before 3.1.0.8 for oVirt 3.1 ...)
NOT-FOR-US: ovirt
CVE-2012-3532
@@ -4165,7 +4165,7 @@
CVE-2012-3525 (s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a ...)
- jabberd2 <unfixed> (bug #685666)
CVE-2012-3524 (libdbus 1.5.x and earlier, when used in setuid or other privileged ...)
- - dbus <unfixed>
+ - dbus 1.6.8-1
- glib2.0 <unfixed>
TODO: Needs more checking, probably this should be fixed in the affected apps like spice?
NOTE: http://www.openwall.com/lists/oss-security/2012/09/12/6
More information about the Secure-testing-commits
mailing list