[Secure-testing-commits] r20783 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Jan 1 14:24:24 UTC 2013 

Author: jmm
Date: 2013-01-01 14:24:24 +0000 (Tue, 01 Jan 2013)
New Revision: 20783

Modified:
   data/CVE/list
Log:
no-dsa: rythmbox, socat
drop thttpd temp entry, already CVEfied
qt fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-01-01 10:34:32 UTC (rev 20782)
+++ data/CVE/list	2013-01-01 14:24:24 UTC (rev 20783)
@@ -727,9 +727,6 @@
 	TODO: check
 CVE-2012-6332
 	RESERVED
-CVE-2012-XXXX [thttpd: Local DoS vulnerability]
-	- thttpd <removed> (low)
-	NOTE: http://www.openwall.com/lists/oss-security/2012/12/12/1
 CVE-2012-6331
 	RESERVED
 CVE-2012-6330
@@ -3305,7 +3302,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/12/17/1
 CVE-2012-5641
 	RESERVED
-CVE-2012-5640
+CVE-2012-5640 [thttpd: Local DoS vulnerability]
 	RESERVED
 	- thttpd <removed> (low)
 	[squeeze] - thttpd <no-dsa> (Minor issue)
@@ -3350,7 +3347,7 @@
 	- nova <not-affected> (Only affects OpenStack Folsom, bug #695830)
 CVE-2012-5624 [qt QML XmlHttpRequest insecure redirection]
 	RESERVED
-	- qt4-x11 <unfixed> (bug #695156)
+	- qt4-x11 4:4.8.2+dfsg-7 (bug #695156)
 	[squeeze] - qt4-x11 <not-affected> (Vulnerable code not present)
 	NOTE: http://lists.qt-project.org/pipermail/announce/2012-November/000014.html
 CVE-2012-5623
@@ -9472,7 +9469,8 @@
 	- viewvc 1.1.5-1.3 (bug #679069)
 	NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2758
 CVE-2012-3355 ((1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) ...)
-	- rhythmbox 2.97-2.1 (bug #616673)
+	- rhythmbox 2.97-2.1 (low; bug #616673)
+	[squeeze] - rhythmbox <no-dsa> (Minor issue)
 	NOTE: Upstream bug report https://bugzilla.gnome.org/show_bug.cgi?id=678661
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=835076
 CVE-2012-3354 (doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain ...)
@@ -17883,7 +17881,8 @@
 	{DSA-2474-1}
 	- ikiwiki 3.20120516
 CVE-2012-0219 (Heap-based buffer overflow in the xioscan_readline function in ...)
-	- socat 1.7.1.3-1.3 (bug #672994)
+	- socat 1.7.1.3-1.3 (low; bug #672994)
+	[squeeze] - socat <no-dsa> (Minor issue)
 	NOTE: http://www.dest-unreach.org/socat/contrib/socat-secadv3.html
 CVE-2012-0218 (Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler ...)
 	{DSA-2501-1}

More information about the Secure-testing-commits mailing list