[Secure-testing-commits] r22739 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Jun 25 17:24:36 UTC 2013
Author: jmm
Date: 2013-06-25 17:24:36 +0000 (Tue, 25 Jun 2013)
New Revision: 22739
Modified:
data/CVE/list
Log:
- no-dsa for squeeze: munin, pam, inkscape, imp, python-keyring
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-25 17:20:15 UTC (rev 22738)
+++ data/CVE/list 2013-06-25 17:24:36 UTC (rev 22739)
@@ -13740,6 +13740,7 @@
NOTE: http://secunia.com/advisories/51583
CVE-2012-5656 (The rasterization process in Inkscape before 0.48.4 allows local users ...)
- inkscape 0.48.3.1-1.2 (bug #696485)
+ [squeeze] - inkscape <no-dsa> (Minor issue)
CVE-2012-5655 (The Context module 6.x-3.x before 6.x-3.1 and 7.x-3.x before ...)
NOT-FOR-US: Context module for Drupal
CVE-2012-5654 (The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when ...)
@@ -13988,10 +13989,12 @@
RESERVED
- python-keyring 0.9.2-1.1 (bug #696736)
[wheezy] - python-keyring 0.7.1-1+deb7u1
+ [squeeze] - python-keyring <no-dsa> (Minor issue)
CVE-2012-5577 [Python keyring insecure permissions on migrated files]
RESERVED
- python-keyring 0.9.2-1.1 (bug #696736)
[wheezy] - python-keyring 0.7.1-1+deb7u1
+ [squeeze] - python-keyring <no-dsa> (Minor issue)
CVE-2012-5576 (Multiple stack-based buffer overflows in file-xwd.c in the X Window ...)
- gimp 2.8.2-2 (bug #693977)
NOTE: Upstream fix http://git.gnome.org/browse/gimp/commit/?id=2873262fccba12af144ed96ed91be144d92ff2e1
@@ -16806,6 +16809,7 @@
CVE-2012-4571 (Python Keyring 0.9.1 does not securely initialize the cipher when ...)
- python-keyring 0.9.2-1 (bug #675379)
[wheezy] - python-keyring 0.7.1-1+deb7u1
+ [squeeze] - python-keyring <no-dsa> (Minor issue)
CVE-2012-4570 [sql injection]
RESERVED
- php-letodms-core 3.3.8-1
@@ -18057,6 +18061,7 @@
[squeeze] - spip 2.1.1-3squeeze5
CVE-2012-XXXX [insecure default configuration / authentication bypass]
- munin 2.0.5-1 (bug #682869)
+ [squeeze] - munin <no-dsa> (Minor issue)
CVE-2012-4141
RESERVED
CVE-2012-4140
@@ -19552,6 +19557,7 @@
NOTE: http://www.munin-monitoring.org/ticket/1238
CVE-2012-3512 (Munin before 2.0.6 stores plugin state files that run as root in the ...)
- munin 2.0.6-1 (bug #684075)
+ [squeeze] - munin <no-dsa> (Minor issue)
NOTE: http://www.munin-monitoring.org/ticket/1234
CVE-2012-3511 (Multiple race conditions in the madvise_remove function in ...)
- linux 3.2.23-1
@@ -38768,6 +38774,7 @@
NOT-FOR-US: Aphpkb
CVE-2010-4778 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- imp4 4.3.10+debian0-1
+ [squeeze] - imp4 <no-dsa> (Minor issue)
CVE-2011-1554 (Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before ...)
{DSA-2388-1}
- t1lib 5.1.2-3.5
@@ -46781,7 +46788,8 @@
{DSA-2126-1}
- linux-2.6 2.6.32-24
CVE-2010-3431 (The privilege-dropping implementation in the (1) pam_env and (2) ...)
- - pam 1.1.3-1 (bug #599832)
+ - pam 1.1.3-1 (low; bug #599832)
+ [squeeze] - pam <no-dsa> (Minor issue)
NOTE: 20100924164823.GA21584 at openwall.com
CVE-2010-3430 (The privilege-dropping implementation in the (1) pam_env and (2) ...)
- pam 1.1.3-1 (bug #599832)
More information about the Secure-testing-commits
mailing list