[Secure-testing-commits] r21748 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Mar 26 08:03:31 UTC 2013
Author: jmm
Date: 2013-03-26 08:03:31 +0000 (Tue, 26 Mar 2013)
New Revision: 21748
Modified:
data/CVE/list
Log:
new bitcoin issues (not in stable or testing)
icu no-dsa as discussed with icu maintainer
linux fixed
new libarchive issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-26 05:18:41 UTC (rev 21747)
+++ data/CVE/list 2013-03-26 08:03:31 UTC (rev 21748)
@@ -918,9 +918,9 @@
RESERVED
NOT-FOR-US: ViewGit
CVE-2013-2293 (The CTransaction::FetchInputs method in bitcoind and Bitcoin-Qt before ...)
- TODO: check
+ - bitcoin <unfixed>
CVE-2013-2292 (bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to ...)
- TODO: check
+ - bitcoin <unfixed>
CVE-2013-2291
RESERVED
CVE-2013-2290
@@ -963,9 +963,9 @@
- puppet 2.7-1
NOTE: Only affects puppet 2.6.x
CVE-2013-2273 (bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 ...)
- TODO: check
+ - bitcoin <unfixed>
CVE-2013-2272 (The penny-flooding protection mechanism in the CTxMemPool::accept ...)
- TODO: check
+ - bitcoin <unfixed>
CVE-2013-2271
RESERVED
CVE-2013-2270
@@ -2041,15 +2041,15 @@
CVE-2013-1799
RESERVED
CVE-2013-1798 (The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux ...)
- - linux <unfixed>
+ - linux 3.2.41-2
- linux-2.6 <removed>
NOTE: http://www.openwall.com/lists/oss-security/2013/03/20/9
CVE-2013-1797 (Use-after-free vulnerability in arch/x86/kvm/x86.c in the Linux kernel ...)
- - linux <unfixed>
+ - linux 3.2.41-2
- linux-2.6 <removed>
NOTE: http://www.openwall.com/lists/oss-security/2013/03/20/9
CVE-2013-1796 (The kvm_set_msr_common function in arch/x86/kvm/x86.c in the Linux ...)
- - linux <unfixed>
+ - linux 3.2.41-2
- linux-2.6 <removed>
NOTE: http://www.openwall.com/lists/oss-security/2013/03/20/9
CVE-2013-1795 (Integer overflow in ptserver in OpenAFS before 1.6.2 allows remote ...)
@@ -4085,7 +4085,7 @@
- linux 3.2.41-1 (low)
- linux-2.6 <removed> (low)
CVE-2013-0913 (Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the ...)
- - linux <unfixed>
+ - linux 3.2.41-2
- linux-2.6 <removed>
CVE-2013-0912 (WebKit in Google Chrome before 25.0.1364.160 allows remote attackers ...)
- chromium-browser 25.0.1364.160-1
@@ -4113,7 +4113,8 @@
RESERVED
CVE-2013-0900 (Race condition in the International Components for Unicode (ICU) ...)
- chromium-browser 25.0.1364.97-1
- - icu 4.8.1.1-12 (bug #702346)
+ - icu 4.8.1.1-12 (low; bug #702346)
+ [squeeze] - icu <no-dsa> (Minor issue)
CVE-2013-0899 (Integer overflow in the padding implementation in the ...)
- chromium-browser 25.0.1364.97-1
CVE-2013-0898 (Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on ...)
@@ -6199,6 +6200,7 @@
- glance 2012.1.1-4
CVE-2013-0211
RESERVED
+ - libarchive <unfixed>
CVE-2013-0210
RESERVED
CVE-2013-0209 (lib/MT/Upgrade.pm in mt-upgrade.cgi in Movable Type 4.2x and 4.3x ...)
@@ -11010,7 +11012,7 @@
CVE-2012-4685 (Cross-site scripting (XSS) vulnerability in Arbor Networks Peakflow SP ...)
NOT-FOR-US: Arbor Networks Peakflow SP
CVE-2012-4684 (The alert functionality in bitcoind and Bitcoin-Qt before 0.7.0 ...)
- TODO: check
+ - bitcoin 0.7.2-1
CVE-2012-4683 (Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers ...)
- bitcoin 0.7.2-1 (bug #688813)
CVE-2012-4682 (Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers ...)
More information about the Secure-testing-commits
mailing list