[Secure-testing-commits] r22536 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Jun 7 21:39:47 UTC 2013 

Author: jmm
Date: 2013-06-07 21:39:46 +0000 (Fri, 07 Jun 2013)
New Revision: 22536

Modified:
   data/CVE/list
Log:
various no-dsa for squeeze


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-06-07 21:37:02 UTC (rev 22535)
+++ data/CVE/list	2013-06-07 21:39:46 UTC (rev 22536)
@@ -3847,6 +3847,7 @@
 	RESERVED
 CVE-2013-2264 (The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, ...)
 	- asterisk 1:1.8.13.1~dfsg-2 (low; bug #704114)
+	[squeeze] - asterisk <no-dsa> (Minor information leak)
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-21013
 CVE-2013-2263 (Unspecified vulnerability in Citrix Access Gateway Standard Edition ...)
 	NOT-FOR-US: Citrix Access Gateway
@@ -6385,7 +6386,8 @@
 CVE-2013-1417
 	RESERVED
 CVE-2013-1416 (The prep_reprocess_req function in do_tgs_req.c in the Key ...)
-	- krb5 1.10.1+dfsg-5 (bug #704775)
+	- krb5 1.10.1+dfsg-5 (low; bug #704775)
+	[squeeze] - krb5 <no-dsa> (Minor issue)
 CVE-2013-1415 (The pkinit_check_kdc_pkid function in ...)
 	- krb5 1.10.1+dfsg-4 (low)
 	[squeeze] - krb5 <no-dsa> (Minor issue)
@@ -11717,6 +11719,7 @@
 	- axis 1.4-16.1 (bug #692650)
 CVE-2012-5783 (Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments ...)
 	- commons-httpclient 3.1-10.1 (bug #692442)
+	[squeeze] - commons-httpclient <no-dsa> (Minor issue)
 CVE-2012-5782 (Amazon Flexible Payments Service (FPS) PHP Library does not verify ...)
 	NOT-FOR-US: Amazon Flexible Payments Service
 CVE-2012-5781 (Amazon Elastic Load Balancing API Tools does not verify that the ...)
@@ -12008,7 +12011,8 @@
 	NOTE: https://savannah.nongnu.org/bugs/?37905
 	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9b6b5754b57c12b820e01305eb69b8863a161e5a
 CVE-2012-5667 (Multiple integer overflows in GNU Grep before 2.11 might allow ...)
-	- grep 2.11-1 (bug #701897)
+	- grep 2.11-1 (low; bug #701897)
+	[squeeze] - grep <no-dsa> (Minor issue)
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1091473
 	NOTE: patch http://git.savannah.gnu.org/cgit/grep.git/commit/?id=cbbc1a45b9f843c811905c97c90a5d31f8e6c189
 	NOTE: http://www.openwall.com/lists/oss-security/2012/12/22/1
@@ -17981,7 +17985,8 @@
 	- wv2 0.4.2.dfsg.1-9.1 (low)
 	[squeeze] - wv2 <no-dsa> (Minor issue)
 CVE-2012-3455 (Heap-based buffer overflow in the read function in ...)
-	- koffice <removed>
+	- koffice <removed> (low)
+	[squeeze] - koffice <no-dsa> (Minor issue)
 CVE-2012-3454 (eXtplorer 2.1.0b6 uses world writable permissions for the ...)
 	- extplorer 2.1.0b6+dfsg.3-4 (low; bug #683649)
 	[squeeze] - extplorer <no-dsa> (Minor issue)
@@ -37399,7 +37404,8 @@
 	- fex 20110610-1
 CVE-2011-1408 [ikiwiki tty hijacking vulnerability]
 	RESERVED
-	- ikiwiki 3.20110608
+	- ikiwiki 3.20110608 (low)
+	[squeeze] - ikiwiki <no-dsa> (Minor issue)
 CVE-2011-1407 (The DKIM implementation in Exim 4.7x before 4.76 permits matching for ...)
 	{DSA-2236-1}
 	- exim4 4.76-1

More information about the Secure-testing-commits mailing list