[Secure-testing-commits] r20161 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Sep 14 06:36:05 UTC 2012
Author: jmm
Date: 2012-09-14 06:36:05 +0000 (Fri, 14 Sep 2012)
New Revision: 20161
Modified:
data/CVE/list
Log:
new vino issue
new openslp issue
gnome-shell non-issue
new mcrypt issue, already fixed by raphael
bug for libvirt
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-14 05:18:01 UTC (rev 20160)
+++ data/CVE/list 2012-09-14 06:36:05 UTC (rev 20161)
@@ -1365,12 +1365,17 @@
RESERVED
CVE-2012-4429
RESERVED
+ - vino <unfixed> (bug #687596; low)
CVE-2012-4428
RESERVED
+ - openslp-dfsg <unfixed> (bug #687597; low)
CVE-2012-4427
RESERVED
+ NOTE: I don't see much of a problem here, if you install from a repo, you need to trust it
CVE-2012-4426
RESERVED
+ - mcrypt 2.6.8-1.1
+ [squeeze] - mcrypt <no-dsa> (minor issue, it doesn't affect libmcrypt)
CVE-2012-4425 [libdbus]
RESERVED
TODO: check
@@ -1379,7 +1384,7 @@
RESERVED
CVE-2012-4423 [libvirt DoS]
RESERVED
- TODO: check
+ - libvirt <unfixed> (bug #687598)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=857133
NOTE: http://www.openwall.com/lists/oss-security/2012/09/13/11
CVE-2012-4422
More information about the Secure-testing-commits
mailing list