[Secure-testing-commits] r20183 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Sep 18 05:51:59 UTC 2012
Author: jmm
Date: 2012-09-18 05:51:59 +0000 (Tue, 18 Sep 2012)
New Revision: 20183
Modified:
data/CVE/list
Log:
fix up duplicated optipng entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-18 04:30:29 UTC (rev 20182)
+++ data/CVE/list 2012-09-18 05:51:59 UTC (rev 20183)
@@ -66,28 +66,24 @@
TODO: check
CVE-2011-5162 (Stack-based buffer overflow in GOM Player 2.1.33.5071 allows ...)
TODO: check
-CVE-2012-XXXX [optipng palette reduction use-after-free]
- - optipng <not-affected>
- NOTE: http://optipng.hg.sourceforge.net/hgweb/optipng/optipng/rev/f1d5d44670a2
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/09/17/5
CVE-2012-4911
RESERVED
CVE-2012-4910
RESERVED
CVE-2012-4909 (Google Chrome before 18.0.1025308 on Android allows remote attackers ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4908 (Google Chrome before 18.0.1025308 on Android allows remote attackers ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4907 (Google Chrome before 18.0.1025308 on Android does not properly ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4906 (Google Chrome before 18.0.1025308 on Android does not properly ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4905 (Cross-site scripting (XSS) vulnerability in Google Chrome before ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4904 (Cross-application scripting vulnerability in Google Chrome before ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4903 (Google Chrome before 18.0.1025308 on Android does not properly ...)
- TODO: check
+ - chromium-browser <not-affected> (Chrome on Android)
CVE-2012-4902
RESERVED
CVE-2012-4901
@@ -1449,7 +1445,7 @@
RESERVED
CVE-2012-4432 [[OptiPNG Palette Reduction Use-After-Free Vulnerability]
RESERVED
- - optipng <unfixed> (low; bug #687998)
+ - optipng <not-affected> (Introduced in 0.7, bug #687998)
CVE-2012-4431
RESERVED
CVE-2012-4430 [bacula console ACL bypass]
@@ -3210,35 +3206,35 @@
CVE-2012-3672 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
NOT-FOR-US: Apple iTunes / if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3671 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
- NOT-FOR-US: Apple iTunes / if anything of this affects Chromium, the Chrome sec team will know and fix
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3670 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3669 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3668 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3667 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3666 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3665 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3664 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3663 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3662
RESERVED
CVE-2012-3661 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- - webkit <undetermined>
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3660 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3659 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3658 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3657 (WebKit, as used in Apple iTunes before 10.7, allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes / Safari; if anything of this affects Chromium, the Chrome sec team will know and fix
CVE-2012-3656 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
- webkit <undetermined>
CVE-2012-3655 (WebKit, as used in Apple Safari before 6.0, allows remote attackers to ...)
More information about the Secure-testing-commits
mailing list