[Secure-testing-commits] r22174 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon May 6 06:34:42 UTC 2013 

Author: jmm
Date: 2013-05-06 06:34:41 +0000 (Mon, 06 May 2013)
New Revision: 22174

Modified:
   data/CVE/list
Log:
record security fixes from 5.5.30
new kernel issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-06 06:07:58 UTC (rev 22173)
+++ data/CVE/list	2013-05-06 06:34:41 UTC (rev 22174)
@@ -2124,7 +2124,7 @@
 CVE-2013-2379 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2013-2378 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2377 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
@@ -2784,7 +2784,8 @@
 	RESERVED
 CVE-2013-2058 [linux: chipidea: allow disabling streaming in host mode]
 	RESERVED
-	TODO: check
+	- linux-2.6 <not-affected> (Vulnerable code not present)
+	- linux <unfixed>
 	NOTE: http://www.openwall.com/lists/oss-security/2013/05/03/2
 CVE-2013-2057
 	RESERVED
@@ -2829,7 +2830,6 @@
 	RESERVED
 	- gpsd 3.6-5 (bug #706665)
 	[wheezy] - gpsd <no-dsa> (Minor issue)
-	[squeeze] - gpsd <undetermined>
 	NOTE: http://lists.nongnu.org/archive/html/gpsd-dev/2013-05/msg00000.html
 CVE-2013-2037 [httplib2: SSL cert incorrect error handling]
 	RESERVED
@@ -4178,14 +4178,14 @@
 CVE-2013-1556 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2013-1555 (Unspecified vulnerability in MySQL 5.1.67 and earlier and 5.5.29 and ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1554 (Unspecified vulnerability in the Network Layer component in Oracle ...)
 	NOT-FOR-US: Oracle Database Server
 CVE-2013-1553 (Unspecified vulnerability in the Oracle Web Services Manager component ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1552 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier and ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1551 (Unspecified vulnerability in the Siebel Enterprise Application ...)
 	NOT-FOR-US: Oracle Siebel CRM
@@ -4233,7 +4233,7 @@
 	- mysql-5.5 <unfixed>		
 	- mysql-5.1 <removed>
 CVE-2013-1531 (Unspecified vulnerability in Oracle MySQL 5.1.66 and earlier and ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1530 (Unspecified vulnerability in Oracle Sun Solaris 10 allows local users ...)
 	NOT-FOR-US: Oracle Solaris
@@ -4244,7 +4244,7 @@
 CVE-2013-1527 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
 	NOT-FOR-US: Oracle PeopleSoft Products
 CVE-2013-1526 (Unspecified vulnerability in Oracle MySQL 5.5.29 and earlier allows ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <not-affected> (Only affects MySQL 5.5)
 CVE-2013-1525 (Unspecified vulnerability in the Oracle Retail Integration Bus ...)
 	NOT-FOR-US: Oracle Industry Applications
@@ -4256,7 +4256,7 @@
 CVE-2013-1522 (Unspecified vulnerability in the Oracle WebCenter Content component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1521 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier and ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1520 (Unspecified vulnerability in the Oracle Clinical Remote Data Capture ...)
 	NOT-FOR-US: Oracle Industry Applications
@@ -4276,7 +4276,7 @@
 CVE-2013-1513 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
 	NOT-FOR-US: Oracle PeopleSoft Products
 CVE-2013-1512 (Unspecified vulnerability in Oracle MySQL 5.5.29 and earlier allows ...)
-	- mysql-5.5 <unfixed>
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <not-affected> (Only affects MySQL 5.5)
 CVE-2013-1511 (Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and ...)
 	- mysql-5.5 <unfixed>		
@@ -4290,7 +4290,7 @@
 CVE-2013-1507 (Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local ...)
 	NOT-FOR-US: Solaris
 CVE-2013-1506 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 ...)
-	- mysql-5.5 <unfixed>		
+	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1505 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle FLEXCUBE
@@ -10144,7 +10144,7 @@
 	NOTE: https://mariadb.atlassian.net/browse/MDEV-3909
 	NOTE: http://seclists.org/fulldisclosure/2012/Dec/9
 CVE-2012-5614 (Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB ...)
-	- mysql-5.1 <unfixed> (low; bug #695001)
+	- mysql-5.5 5.5.30+dfsg-1 (low; bug #695001)
 	- mysql-5.5 <unfixed> (low; bug #695001)
 	NOTE: https://mariadb.atlassian.net/browse/MDEV-3910
 	NOTE: http://seclists.org/fulldisclosure/2012/Dec/7

More information about the Secure-testing-commits mailing list