[Secure-testing-commits] r22117 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Wed May 1 13:06:40 UTC 2013 

Author: jmm
Date: 2013-05-01 13:06:39 +0000 (Wed, 01 May 2013)
New Revision: 22117

Modified:
   data/CVE/list
Log:
filed bug for x3270
correct some fixed versions for linux kernel


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-01 12:10:11 UTC (rev 22116)
+++ data/CVE/list	2013-05-01 13:06:39 UTC (rev 22117)
@@ -3458,7 +3458,7 @@
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 2.6.32-47
 CVE-2013-1826 (The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux ...)
-	- linux 3.2.41-2 (low)
+	- linux 3.2.32-1 (low)
 	- linux-2.6 <removed> (low)
 	NOTE: Probably gone since 3.2.32-1, but I checked 3.2.41-2
 CVE-2013-1825
@@ -3608,7 +3608,7 @@
 	- linux 3.2.38-1
 	- linux-2.6 <removed>
 CVE-2013-1773 (Buffer overflow in the VFAT filesystem implementation in the Linux ...)
-	- linux 3.2.41-2
+	- linux 3.2.15-1
 	- linux-2.6 <removed>
 	NOTE: Probably gone since 3.2.15-1, but I checked 3.2.41-2
 CVE-2013-1772 (The log_prefix function in kernel/printk.c in the Linux kernel 3.x ...)
@@ -7292,7 +7292,7 @@
 	- pktstat 1.8.5-3 (bug #701211)
 	[squeeze] - pktstat <not-affected> (Vulnerable code not present)
 CVE-2013-0349 (The hidp_setup_hid function in net/bluetooth/hidp/core.c in the Linux ...)
-	- linux 3.2.41-2
+	- linux 3.2.39-1
 	- linux-2.6 <removed>
 CVE-2013-0348 [sthttpd world-redable logdir]
 	RESERVED
@@ -7389,7 +7389,7 @@
 CVE-2013-0314 (The GateIn Portal export/import gadget in JBoss Enterprise Portal ...)
 	NOT-FOR-US: GateIn Portal
 CVE-2013-0313 (The evm_update_evmxattr function in ...)
-	- linux <not-affected> (Code not enabled in Wheezy)
+	- linux 3.2.39-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-0312 (389 Directory Server before 1.3.0.4 allows remote attackers to cause a ...)
 	- 389-ds-base 1.3.0.3-1 
@@ -7397,10 +7397,10 @@
 	- linux 3.2.41-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-0310 (The cipso_v4_validate function in net/ipv4/cipso_ipv4.c in the Linux ...)
-	- linux <not-affected> (Code not enabled in Wheezy)
+	- linux 3.2.29-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-0309 (arch/x86/include/asm/pgtable.h in the Linux kernel before 3.6.2, when ...)
-	- linux 3.2.41-2
+	- linux 3.2.32-1
 	- linux-2.6 <not-affected> (THP not in Squeeze)
 	NOTE: Probably gone since 3.2.32, but I checked 3.2.41-2
 CVE-2013-0308 (The imap-send command in GIT before 1.8.1.4 does not verify that the ...)
@@ -7542,7 +7542,7 @@
 	- ruby1.9.1 1.9.3.194-7 (bug #700436)
 	- ruby1.8 <not-affected> (json ext not present in 1.8)
 CVE-2013-0268 (The msr_open function in arch/x86/kernel/msr.c in the Linux kernel ...)
-	- linux 3.2.41-2
+	- linux 3.2.39-1
 	- linux-2.6 2.6.32-48squeeze1
 CVE-2013-0267
 	RESERVED
@@ -9952,7 +9952,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/12/21/1
 CVE-2012-5662
 	RESERVED
-	- ibm-3270 <unfixed>
+	- ibm-3270 <unfixed> (bug #706547)
 	[squeeze] - ibm-3270 <no-dsa> (Non-free not supported)
 CVE-2012-5661
 	REJECTED

More information about the Secure-testing-commits mailing list