[Secure-testing-commits] r22891 - in data: CVE DSA

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-07-10 06:09:10 +0000 (Wed, 10 Jul 2013)
New Revision: 22891

Modified:
   data/CVE/list
   data/DSA/list
Log:
otrs updates
vlc issue is rather in ffmpeg/libav


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-10 06:02:22 UTC (rev 22890)
+++ data/CVE/list	2013-07-10 06:09:10 UTC (rev 22891)
@@ -3309,9 +3309,12 @@
 	RESERVED
 CVE-2013-3245
 	RESERVED
-	- vlc <unfixed>
-	TODO: check
+	- libav 6:0.8.6-1 (bug #703200)
+	- ffmpeg <removed>
+	NOTE: ffmpeg commit: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=e70c5b034c4787377e82cab2d5565486baec0c2a
+	NOTE: libav commit: http://git.libav.org/?p=libav.git;a=commit;h=e70c5b034c4787377e82cab2d5565486baec0c2a
 	NOTE: http://secunia.com/blog/372/
+	NOTE: http://www.jbkempf.com/blog/post/2013/More-lies-from-Secunia
 CVE-2013-3244
 	RESERVED
 CVE-2013-3243
@@ -36925,8 +36928,7 @@
 CVE-2011-2386 (VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey ...)
 	NOT-FOR-US: VisiWave Site Survey
 CVE-2011-2385 (The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 1.0.3 in ...)
-	- otrs2 3.0.9+dfsg1-1
-	[lenny] - otrs2 <not-affected> (does not include iPhoneHandle package)
+	- otrs2 <not-affected> (does not include iPhoneHandle package)
 CVE-2011-2384
 	RESERVED
 CVE-2011-2381 (CRLF injection vulnerability in Bugzilla 2.17.1 through 2.22.7, 3.0.x ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2013-07-10 06:02:22 UTC (rev 22890)
+++ data/DSA/list	2013-07-10 06:09:10 UTC (rev 22891)
@@ -593,7 +593,7 @@
 	{CVE-2012-3527 CVE-2012-3528 CVE-2012-3529 CVE-2012-3530 CVE-2012-3531}
 	[squeeze] - typo3-src 4.3.9+dfsg1-1+squeeze5
 [30 Aug 2012] DSA-2536-1 otrs2 - cross-site scripting
-	{CVE-2012-2582}
+	{CVE-2012-2582 CVE-2012-4600}
 	[squeeze] - otrs2 2.4.9+dfsg1-3+squeeze3
 [29 Aug 2012] DSA-2535-1 rtfm - cross-site scripting
 	{CVE-2012-2768}