[Secure-testing-commits] r22841 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-07-04 05:10:05 +0000 (Thu, 04 Jul 2013)
New Revision: 22841

Modified:
   data/CVE/list
   data/dsa-needed-stable.txt
Log:
one mplayer issue not-affected
take openjdk DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-04 05:01:05 UTC (rev 22840)
+++ data/CVE/list	2013-07-04 05:10:05 UTC (rev 22841)
@@ -5650,7 +5650,6 @@
 	RESERVED
 	- linux-2.6 <removed>
 	- linux <unfixed>
-	TODO: check
 CVE-2013-2231
 	RESERVED
 CVE-2013-2230
@@ -33141,7 +33140,7 @@
 CVE-2011-3625 [mplayer SAMI subtitle parsing buffer overflow]
 	RESERVED
 	- mplayer 2:1.0~rc4.dfsg1+svn33713-2 (bug #645987)
-	[squeeze] - mplayer <no-dsa> (Minor issue)
+	[squeeze] - mplayer <not-affected> (Malformed SMI file correctly rejected, possibly introduced by later changes)
 	- mplayer2 2.0-134-g84d8671-9 (bug #646937)
 CVE-2011-3624
 	RESERVED

Modified: data/dsa-needed-stable.txt
===================================================================
--- data/dsa-needed-stable.txt	2013-07-04 05:01:05 UTC (rev 22840)
+++ data/dsa-needed-stable.txt	2013-07-04 05:10:05 UTC (rev 22841)
@@ -28,7 +28,9 @@
 nginx
   maintainer uploaded an update
 --
-openjdk-7
+openjdk-6
+--
+openjdk-7 (jmm)
   Package from sid needs to be rebuild in stable-security
 --
 openswan
@@ -46,7 +48,8 @@
 --
 tomcat7
 --
-vlc (jmm)
+vlc
+  it probably makes sense to update to the 2.0.x point releases
 --
 wordpress (corsac)
   Maintainer upload fixed packages