[Secure-testing-commits] r20075 - data/CVE

Raphael Geissert geissert at alioth.debian.org
Sat Sep 1 17:48:12 UTC 2012 

Author: geissert
Date: 2012-09-01 17:48:11 +0000 (Sat, 01 Sep 2012)
New Revision: 20075

Modified:
   data/CVE/list
Log:
new bugzilla issue
also add the bugzilla4 itp note to 2012 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-09-01 17:29:30 UTC (rev 20074)
+++ data/CVE/list	2012-09-01 17:48:11 UTC (rev 20075)
@@ -1809,6 +1809,9 @@
 	RESERVED
 CVE-2012-3981
 	RESERVED
+	- bugzilla <removed>
+	- bugzilla4 <itp> (bug #669643)
+	TODO: check
 CVE-2012-3980 (The web console in Mozilla Firefox before 15.0, Firefox ESR 10.x ...)
 	- iceweasel 10.0.7esr-1
 	- icedove <unfixed>
@@ -6699,9 +6702,11 @@
 	- iceape 2.7.7-1
 CVE-2012-1969 (The get_attachment_link function in Template.pm in Bugzilla 2.x and ...)
 	- bugzilla <removed> (low)
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-1968 (Bugzilla 4.1.x and 4.2.x before 4.2.2 and 4.3.x before 4.3.2 uses ...)
 	- bugzilla <not-affected> (Only affects 4.1 to 4.3)
+	- bugzilla4 <itp> (bug #669643)
 CVE-2012-1967 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...)
 	{DSA-2528-1 DSA-2514-1 DSA-2513-1}
 	- iceweasel 10.0.6esr-1
@@ -10402,9 +10407,11 @@
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0466 (template/en/default/list/list.js.tmpl in Bugzilla 2.x and 3.x before ...)
 	- bugzilla <removed> (low)
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-0465 (Bugzilla 3.5.x and 3.6.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, ...)
 	- bugzilla <removed> (low)
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-0464 (Use-after-free vulnerability in the browser engine in Mozilla Firefox ...)
 	- icedove <unfixed>
@@ -10467,6 +10474,7 @@
 	- iceweasel <not-affected> (Only affects Firefox on Windows)
 CVE-2012-0453 (Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in ...)
 	- bugzilla <removed>
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-0452 (Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, ...)
 	- icedove <not-affected> (Introduced in Thunderbird 10)
@@ -10499,6 +10507,7 @@
 	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2012-0448 (Bugzilla 2.x and 3.x before 3.4.14, 3.5.x and 3.6.x before 3.6.8, ...)
 	- bugzilla <removed> (low)
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-0447 (Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and ...)
 	- icedove <unfixed>
@@ -10556,6 +10565,7 @@
 	- nss 3.13.4-1
 CVE-2012-0440 (Cross-site request forgery (CSRF) vulnerability in jsonrpc.cgi in ...)
 	- bugzilla <removed> (low)
+	- bugzilla4 <itp> (bug #669643)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
 CVE-2012-0439
 	RESERVED

More information about the Secure-testing-commits mailing list