[Secure-testing-commits] r20267 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Oct 1 08:01:26 UTC 2012
Author: jmm
Date: 2012-10-01 08:01:25 +0000 (Mon, 01 Oct 2012)
New Revision: 20267
Modified:
data/CVE/list
data/next-point-update.txt
Log:
initial set of fixes from 6.0.6 point update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-10-01 07:47:56 UTC (rev 20266)
+++ data/CVE/list 2012-10-01 08:01:25 UTC (rev 20267)
@@ -6130,7 +6130,7 @@
CVE-2012-2738 (The VteTerminal in gnome-terminal (vte) before 0.32.2 allows remote ...)
- vte 1:0.28.2-5 (bug #677717)
- vte3 1:0.32.2-1
- [squeeze] - vte <no-dsa> (Minor issue)
+ [squeeze] - vte 1:0.24.3-4
CVE-2012-2737 (The user_change_icon_file_authorized_cb function in ...)
- accountsservice 0.6.21-6 (bug #679429)
NOTE: http://www.openwall.com/lists/oss-security/2012/06/28/9
@@ -8983,12 +8983,13 @@
NOTE: Not suitable for code injection
CVE-2012-1595 (The pcap_process_pseudo_header function in wiretap/pcap-common.c in ...)
- wireshark 1.6.6-1 (bug #666058)
- [squeeze] - wireshark <no-dsa> (Minor issue, will be fixed through spu)
+ [squeeze] - wireshark 1.2.11-6+squeeze7
CVE-2012-1594 (epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in ...)
- wireshark 1.6.6-1 (unimportant; bug #666058)
NOTE: Not suitable for code injection
CVE-2012-1593 (epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark ...)
- wireshark 1.6.6-1 (unimportant; bug #666058)
+ [squeeze] - wireshark 1.2.11-6+squeeze7
NOTE: Not suitable for code injection
CVE-2012-1592
RESERVED
@@ -10501,7 +10502,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2012/05/03/4
CVE-2012-0946 (The NVIDIA UNIX driver before 295.40 allows local users to access ...)
- nvidia-graphics-drivers 295.40-1
- [squeeze] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+ [squeeze] - nvidia-graphics-drivers 195.36.31-6squeeze1
CVE-2012-0945
RESERVED
CVE-2012-0944 (Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does ...)
@@ -10712,7 +10713,6 @@
RESERVED
- eglibc 2.13-31 (low; bug #660611)
[squeeze] - eglibc 2.11.3-4
- NOTE: hardening bypass
CVE-2012-0863 (Mumble 1.2.3 and earlier uses world-readable permissions for ...)
{DSA-2411-1}
- mumble 1.2.3-3 (bug #659039)
@@ -14145,7 +14145,7 @@
CVE-2011-4609
RESERVED
- eglibc 2.13-33 (low; bug #671478)
- [squeeze] - eglibc <no-dsa> (Minor issue, can be fixed in next point update)
+ [squeeze] - eglibc 2.11.3-4
CVE-2011-4608 (mod_cluster in JBoss Enterprise Application Platform 5.1.2 for Red Hat ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full application server)
CVE-2011-4607 [http://seclists.org/oss-sec/2011/q4/500]
Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt 2012-10-01 07:47:56 UTC (rev 20266)
+++ data/next-point-update.txt 2012-10-01 08:01:25 UTC (rev 20267)
@@ -1,14 +1,2 @@
-CVE-2012-0864
- [squeeze] - eglibc 2.11.3-4
-CVE-2011-4609
- [squeeze] - eglibc 2.11.3-4
-CVE-2012-2738
- [squeeze] - vte 1:0.24.3-4
-CVE-2012-0946
- [squeeze] - nvidia-graphics-drivers 195.36.31-6squeeze1
-CVE-2012-1595
- [squeeze] - wireshark 1.2.11-6+squeeze7
-CVE-2012-1593
- [squeeze] - wireshark 1.2.11-6+squeeze7
More information about the Secure-testing-commits
mailing list