[Secure-testing-commits] r22045 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Fri Apr 26 10:38:54 UTC 2013 

Author: carnil
Date: 2013-04-26 10:38:54 +0000 (Fri, 26 Apr 2013)
New Revision: 22045

Modified:
   data/CVE/list
Log:
commit changes on behalf of raphael

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-04-26 07:02:14 UTC (rev 22044)
+++ data/CVE/list	2013-04-26 10:38:54 UTC (rev 22045)
@@ -124,6 +124,7 @@
 CVE-2013-3212
 	RESERVED
 CVE-2012-6551 (The default configuration of Apache ActiveMQ before 5.8.0 enables a ...)
+	- activemq <unfixed>
 	TODO: check
 CVE-2013-XXXX [jPlayer several vulnerabilities]
 	- libjs-jquery-jplayer <unfixed>
@@ -2142,6 +2143,8 @@
 	RESERVED
 CVE-2013-2296
 	RESERVED
+	- eucalyptus <unfixed>
+	TODO: check
 CVE-2013-2295
 	RESERVED
 CVE-2013-2294
@@ -2803,6 +2806,9 @@
 	RESERVED
 CVE-2013-1979
 	RESERVED
+	- linux <unfixed>
+	- linux-2.6 <not-affected>
+	TODO: check
 CVE-2013-1978
 	RESERVED
 CVE-2013-1977
@@ -3172,6 +3178,8 @@
 	NOTE: http://www.samba.org/samba/security/CVE-2013-1863
 CVE-2013-1862
 	RESERVED
+	- apache2 <unfixed> (low)
+	NOTE: if not unimportant
 CVE-2013-1861 (MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, ...)
 	- mysql-5.5 <unfixed>
 	- mysql-5.1 <removed>
@@ -3974,6 +3982,8 @@
 CVE-2013-1559 (Unspecified vulnerability in the Oracle WebCenter Content component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1558 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+	- openjdk-7 <unfixed>
+	- openjdk-6 <unfixed>
 	TODO: check
 CVE-2013-1557 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-7 7u21-2.3.9-1
@@ -4015,6 +4025,8 @@
 CVE-2013-1541 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Finacial Services
 CVE-2013-1540 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+	- openjdk-6 <unfixed>
+	- openjdk-7 <unfixed>
 	TODO: check
 CVE-2013-1539 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services
@@ -5699,6 +5711,11 @@
 CVE-2013-0801
 	RESERVED
 CVE-2013-0800 (Integer signedness error in the pixman_fill_sse2 function in ...)
+	- pixmain <unfixed>
+	- iceweasel <unfixed>
+	- icedove <unfixed>
+	- iceape <unfixed>
+	- wine-gecko <unfixed>
 	TODO: check
 CVE-2013-0799 (Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox ...)
 	TODO: check
@@ -8412,6 +8429,7 @@
 	NOTE: https://codereview.qt-project.org/#change,42461
 	NOTE: Fixed in 4:4.8.2+dfsg-10
 CVE-2012-6092 (Multiple cross-site scripting (XSS) vulnerabilities in the web demos ...)
+	- activemq <unfixed> (unimportant)
 	TODO: check
 CVE-2012-6091
 	RESERVED
@@ -14200,6 +14218,8 @@
 	NOT-FOR-US: Citrix
 CVE-2012-4067
 	RESERVED
+	- eucalyptus <unfixed>
+	TODO: check
 CVE-2012-4066 (The internal message protocol for Walrus in Eucalyptus 3.2.0 and ...)
 	- eucalyptus <unfixed> (bug #702388)
 CVE-2012-4065 (Eucalyptus before 3.1.1 does not properly restrict the binding of ...)

More information about the Secure-testing-commits mailing list