[Secure-testing-commits] r20114 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Sep 7 06:15:17 UTC 2012
Author: jmm
Date: 2012-09-07 06:15:16 +0000 (Fri, 07 Sep 2012)
New Revision: 20114
Modified:
data/CVE/list
Log:
filed bug for jruby
new xen issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-06 21:14:20 UTC (rev 20113)
+++ data/CVE/list 2012-09-07 06:15:16 UTC (rev 20114)
@@ -1009,6 +1009,7 @@
RESERVED
CVE-2012-4411
RESERVED
+ - xen <unfixed>
CVE-2012-4409
RESERVED
- mcrypt 2.6.8-1.1
@@ -3489,6 +3490,7 @@
NOTE: http://hg.pidgin.im/pidgin/main/rev/ded93865ef42
CVE-2012-3373
RESERVED
+ NOT-FOR-US: Apache Wicket
CVE-2012-3372 (** DISPUTED ** The default configuration of Cyberoam UTM appliances ...)
NOT-FOR-US: Cyberoam DPI devices
NOTE: https://blog.torproject.org/blog/security-vulnerability-found-cyberoam-dpi-devices-cve-2012-3372
@@ -11876,7 +11878,7 @@
CVE-2011-4839
RESERVED
CVE-2011-4838 (JRuby before 1.6.5.1 computes hash values without restricting the ...)
- - jruby <unfixed>
+ - jruby <unfixed> (bug #686867)
[squeeze] - jruby <no-dsa> (Non-free not supported)
CVE-2012-0220 (Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin ...)
{DSA-2474-1}
More information about the Secure-testing-commits
mailing list