[Secure-testing-commits] r21141 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-02-04 16:49:40 +0000 (Mon, 04 Feb 2013)
New Revision: 21141

Modified:
   data/CVE/list
Log:
Deployment / sound code not present in OpenJDK, not-affected


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-02-04 16:30:26 UTC (rev 21140)
+++ data/CVE/list	2013-02-04 16:49:40 UTC (rev 21141)
@@ -234,7 +234,8 @@
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 CVE-2013-1481 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Icedtea uses a different sound implementation than Oracle Java)
+	- openjdk-7 <not-affected> (Icedtea uses a different sound implementation than Oracle Java)
 CVE-2013-1480 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-6 6b27-1.12-1
 CVE-2013-1479 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -252,7 +253,8 @@
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 CVE-2013-1473 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-1472 (Unspecified vulnerability in the JavaFX component in Oracle Java SE ...)
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
@@ -2874,7 +2876,8 @@
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 CVE-2013-0446 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0445 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	TODO: check
 CVE-2013-0444 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -2891,7 +2894,8 @@
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 CVE-2013-0438 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0437 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	TODO: check
 CVE-2013-0436 (Unspecified vulnerability in the JavaFX component in Oracle Java SE ...)
@@ -2908,7 +2912,8 @@
 CVE-2013-0431 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	TODO: check
 CVE-2013-0430 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0429 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-6 6b27-1.12-1
 CVE-2013-0428 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -2922,7 +2927,8 @@
 CVE-2013-0424 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-6 6b27-1.12-1
 CVE-2013-0423 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0422 (Multiple vulnerabilities in Oracle Java 7 before Update 11 allow ...)
 	- openjdk-6 <not-affected> (Only affects Java 7)
 	- openjdk-7 7u3-2.1.4-1
@@ -2933,7 +2939,8 @@
 	- virtualbox 4.1.18-dfsg-2 (bug #698292)
 	- virtualbox-ose <removed>
 CVE-2013-0419 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0418 (Unspecified vulnerability in the Oracle Outside In Technology ...)
 	NOT-FOR-US: Oracle Outside In
 CVE-2013-0417 (Unspecified vulnerability in the Sun Storage Common Array Manager ...)
@@ -3078,7 +3085,8 @@
 CVE-2013-0352 (Unspecified vulnerability in the Enterprise Manager Base Platform ...)
 	NOT-FOR-US: Oracle Enterprise Manager Grid Control
 CVE-2013-0351 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-0350
 	RESERVED
 CVE-2013-0349
@@ -11911,7 +11919,8 @@
 CVE-2010-5141 (wxBitcoin and bitcoind before 0.3.5 do not properly handle script ...)
 	- bitcoin <not-affected> (Fixed before initial release)
 CVE-2012-3342 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2012-3341
 	RESERVED
 CVE-2012-3340
@@ -16331,7 +16340,8 @@
 CVE-2012-1542
 	RESERVED
 CVE-2012-1541 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
+	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2012-1540
 	RESERVED
 CVE-2012-1539 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)