[Secure-testing-commits] r26216 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Mar 22 16:25:13 UTC 2014
Author: carnil
Date: 2014-03-22 16:25:13 +0000 (Sat, 22 Mar 2014)
New Revision: 26216
Modified:
data/CVE/list
Log:
Mark the squeeze no-dsa marked issues for chromium-browser as end-of-life
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-22 16:10:27 UTC (rev 26215)
+++ data/CVE/list 2014-03-22 16:25:13 UTC (rev 26216)
@@ -34928,7 +34928,7 @@
[squeeze] - chromium-browser <not-affected>
CVE-2012-2846 (Google Chrome before 21.0.1180.57 on Linux does not properly isolate ...)
- chromium-browser 21.0.1180.57~r148591
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
CVE-2012-2845 (Integer overflow in the jpeg_data_load_data function in jpeg-data.c in ...)
- exif 0.6.20-2 (low; bug #681465)
[squeeze] - exif <no-dsa> (Minor crasher)
@@ -35021,7 +35021,7 @@
- chromium-browser <not-affected> (windows-only)
CVE-2012-2815 (Google Chrome before 20.0.1132.43 allows remote attackers to obtain ...)
- chromium-browser 20.0.1132.43~r143823-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
CVE-2012-2814 (Buffer overflow in the exif_entry_format_value function in ...)
{DSA-2559-1}
- libexif 0.6.20-3 (bug #681454)
@@ -45771,7 +45771,7 @@
NOTE: http://trac.webkit.org/changeset/96843
CVE-2011-3888 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
- chromium-browser 15.0.874.106~r107270-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/96868
CVE-2011-3887 (Google Chrome before 15.0.874.102 does not properly handle javascript: ...)
- chromium-browser 15.0.874.106~r107270-1
@@ -51749,11 +51749,11 @@
- webkit <not-affected> (chromium extensions)
CVE-2011-1811 (Google Chrome before 12.0.742.91 does not properly handle a large ...)
- chromium-browser 12.0.742.91~r87961-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (chromium specific)
CVE-2011-1810 (The Cascading Style Sheets (CSS) implementation in Google Chrome ...)
- chromium-browser 12.0.742.91~r87961-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/83345
CVE-2011-1809 (Use-after-free vulnerability in the accessibility feature in Google ...)
- chromium-browser 12.0.742.91~r87961-1
@@ -52887,7 +52887,7 @@
NOTE: http://trac.webkit.org/changeset/84009
CVE-2011-1439 (Google Chrome before 11.0.696.57 on Linux does not properly isolate ...)
- chromium-browser 11.0.696.65~r84435-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (chromium specific)
CVE-2011-1438 (Google Chrome before 11.0.696.57 allows remote attackers to bypass the ...)
- chromium-browser 11.0.696.65~r84435-1
@@ -52903,11 +52903,11 @@
- webkit <not-affected> (chromium specific)
CVE-2011-1435 (Google Chrome before 11.0.696.57 does not properly implement the tabs ...)
- chromium-browser 11.0.696.65~r84435-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (chromium specific)
CVE-2011-1434 (Google Chrome before 11.0.696.57 does not ensure thread safety during ...)
- chromium-browser 11.0.696.65~r84435-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (chromium specific)
CVE-2011-1433 (The (1) AgentInterface and (2) CustomerInterface components in Open ...)
- otrs2 3.0.8+dfsg1-1
@@ -53256,7 +53256,7 @@
NOT-FOR-US: Google ChromeOS
CVE-2011-1305 (Race condition in Google Chrome before 11.0.696.57 on Linux and Mac OS ...)
- chromium-browser 11.0.696.65~r84435-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/76713
CVE-2011-1304 (Unspecified vulnerability in Google Chrome before 11.0.696.57 allows ...)
- chromium-browser 11.0.696.65~r84435-1 (unimportant)
@@ -53286,7 +53286,7 @@
NOTE: http://trac.webkit.org/changeset/80520
CVE-2011-1295 (WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari ...)
- chromium-browser 10.0.648.204~r79063-1
- [squeeze] - chromium-browser <no-dsa> (hard merge)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/80487
CVE-2011-1294 (Google Chrome before 10.0.648.204 does not properly handle Cascading ...)
- chromium-browser 10.0.648.204~r79063-1
@@ -53486,7 +53486,7 @@
NOT-FOR-US: IBM Rational ClearCase, ClearQuest
CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle attributes, ...)
- chromium-browser 10.0.648.127~r76697-1
- [squeeze] - chromium-browser <no-dsa> (hard merge)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/79810
NOTE: very hard to merge: needs introduction of ScopedEventQueue.cpp
CVE-2011-1203 (Google Chrome before 10.0.648.127 does not properly handle SVG ...)
@@ -53601,7 +53601,7 @@
- webkit <not-affected> (chromium specific)
CVE-2011-1185 (Google Chrome before 10.0.648.127 does not prevent (1) navigation and ...)
- chromium-browser 10.0.648.127~r76697-1
- [squeeze] - chromium-browser <no-dsa> (minor issue)
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/74853
CVE-2011-1184 (The HTTP Digest Access Authentication implementation in Apache Tomcat ...)
{DSA-2401-1}
More information about the Secure-testing-commits
mailing list