[Secure-testing-commits] r24180 - in data: . CVE DSA

[Michael Gilbert]

Author: mgilbert
Date: 2013-10-26 18:59:22 +0000 (Sat, 26 Oct 2013)
New Revision: 24180

Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
chromium dsa

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-10-26 08:58:05 UTC (rev 24179)
+++ data/CVE/list	2013-10-26 18:59:22 UTC (rev 24180)
@@ -7859,18 +7859,15 @@
 	- chromium-browser 30.0.1599.101-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2013-2914 (Use-after-free vulnerability in the color-chooser dialog in Google ...)
-	- chromium-browser 30.0.1599.101-1
-	[squeeze] - chromium-browser <end-of-life>
+	- chromium-browser <not-affected> (windows-specific issue)
 CVE-2013-2913 (Use-after-free vulnerability in the XMLDocumentParser::append function ...)
 	- chromium-browser 30.0.1599.101-1
 	[squeeze] - chromium-browser <end-of-life>
-	TODO: Might affect libxml2
 CVE-2013-2912 (Use-after-free vulnerability in the PepperInProcessRouter::SendToHost ...)
 	- chromium-browser 30.0.1599.101-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2013-2911 (Use-after-free vulnerability in the XSLStyleSheet::compileStyleSheet ...)
 	- chromium-browser 30.0.1599.101-1
-	TODO: Might affect libxslt
 CVE-2013-2910 (Use-after-free vulnerability in ...)
 	- chromium-browser 30.0.1599.101-1
 	[squeeze] - chromium-browser <end-of-life>

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2013-10-26 08:58:05 UTC (rev 24179)
+++ data/DSA/list	2013-10-26 18:59:22 UTC (rev 24180)
@@ -1,3 +1,6 @@
+[26 Oct 2013] DSA-2785-1 chromium-browser - several
+	{CVE-2013-2906 CVE-2013-2907 CVE-2013-2908 CVE-2013-2909 CVE-2013-2910 CVE-2013-2911 CVE-2013-2912 CVE-2013-2913 CVE-2013-2915 CVE-2013-2916 CVE-2013-2917 CVE-2013-2918 CVE-2013-2919 CVE-2013-2920 CVE-2013-2921 CVE-2013-2922 CVE-2013-2923 CVE-2013-2924 CVE-2013-2925 CVE-2013-2926 CVE-2013-2927 CVE-2013-2928}
+	[wheezy] - chromium-browser 30.0.1599.101-1~deb7u1
 [22 Oct 2013] DSA-2784-1 xorg-server - use-after-free
 	{CVE-2013-4396}
 	[squeeze] - xorg-server 2:1.7.7-17

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2013-10-26 08:58:05 UTC (rev 24179)
+++ data/dsa-needed.txt	2013-10-26 18:59:22 UTC (rev 24180)
@@ -15,8 +15,6 @@
 --
 apache2 (sf)
 --
-chromium-browser
---
 eglibc
 --
 gdm/oldstable