[Secure-testing-commits] r20116 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Fri Sep 7 17:39:34 UTC 2012
Author: geissert
Date: 2012-09-07 17:39:33 +0000 (Fri, 07 Sep 2012)
New Revision: 20116
Modified:
data/CVE/list
Log:
new eglibc issue; blender got a 2010 id, rejecting 2012's
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-07 15:53:21 UTC (rev 20115)
+++ data/CVE/list 2012-09-07 17:39:33 UTC (rev 20116)
@@ -86,9 +86,9 @@
TODO: check
CVE-2010-5195 (Untrusted search path vulnerability in Roxio MyDVD 9 allows local ...)
TODO: check
-CVE-2012-4410 [blender /tmp/quit.blend temp file issue]
+CVE-2012-4410
RESERVED
- - blender <unfixed> (bug #584621)
+ NOTE: to be rejected
CVE-2012-4753 (Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud ...)
- owncloud 4.0.5debian-1
NOTE: http://www.openwall.com/lists/oss-security/2012/09/05/17
@@ -1005,8 +1005,9 @@
RESERVED
CVE-2012-4413
RESERVED
-CVE-2012-4412
+CVE-2012-4412 [strcoll int->buffer overflow]
RESERVED
+ - eglibc <unfixed>
CVE-2012-4411
RESERVED
- xen <unfixed>
@@ -5702,8 +5703,9 @@
RESERVED
CVE-2010-5106
RESERVED
-CVE-2010-5105
+CVE-2010-5105 [blender /tmp/quit.blend temp file issue]
RESERVED
+ - blender <unfixed> (bug #584621)
CVE-2010-5104 (The escapeStrForLike method in TYPO3 4.2.x before 4.2.16, 4.3.x before ...)
- typo3-src 4.3.9+dfsg1-1 (bug #607286)
CVE-2010-5103 (SQL injection vulnerability in the list module in TYPO3 4.2.x before ...)
More information about the Secure-testing-commits
mailing list