[Secure-testing-commits] r20209 - data/CVE
Arne Wichmann
aw-guest at alioth.debian.org
Fri Sep 21 20:24:33 UTC 2012
Author: aw-guest
Date: 2012-09-21 20:24:33 +0000 (Fri, 21 Sep 2012)
New Revision: 20209
Modified:
data/CVE/list
Log:
CVE-2012-0864 is fixed in 2.11.3-4 in squeeze
bug for CVE-2012-2677
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-21 06:53:20 UTC (rev 20208)
+++ data/CVE/list 2012-09-21 20:24:33 UTC (rev 20209)
@@ -5814,7 +5814,7 @@
CVE-2012-2678 (389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server ...)
- 389-ds-base <not-affected> (Fixed before initial upload)
CVE-2012-2677 (Integer overflow in the ordered_malloc function in boost/pool/pool.hpp ...)
- - boost1.42 <removed>
+ - boost1.42 <removed> (bug #688331)
- boost1.49 1.49.0-3.1 (bug #677197)
CVE-2012-2676 (Multiple integer overflows in the (1) malloc and (2) calloc functions ...)
NOT-FOR-US: Hoard memory allocator
@@ -10242,7 +10242,8 @@
CVE-2012-0864 [FORTIFY_SOURCE format string protection bypass]
RESERVED
- eglibc 2.13-31 (low; bug #660611)
- [squeeze] - eglibc <no-dsa> (hardening bypass)
+ [squeeze] - eglibc 2.11.3-4
+ NOTE: hardening bypass
CVE-2012-0863 (Mumble 1.2.3 and earlier uses world-readable permissions for ...)
{DSA-2411-1}
- mumble 1.2.3-3 (bug #659039)
More information about the Secure-testing-commits
mailing list