[Secure-testing-commits] r20381 - data/CVE

Sun, 21 Oct 2012 23:44:53 -0700 

Author: jmm
Date: 2012-10-22 06:44:39 +0000 (Mon, 22 Oct 2012)
New Revision: 20381

Modified:
   data/CVE/list
Log:
mcrypt bugnum
one more iceweasel issue is fixed
extplorer fixed
revelation fixed, no-dsa for squeeze
new tor issue (fixed)


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2012-10-21 21:15:20 UTC (rev 20380)
+++ data/CVE/list       2012-10-22 06:44:39 UTC (rev 20381)
@@ -2435,7 +2435,7 @@
        RESERVED
 CVE-2012-4527
        RESERVED
-       - mcrypt <unfixed>
+       - mcrypt <unfixed> (bug #690924)
 CVE-2012-4526 [XSS in password.php, incomplete fix for CVE-2012-4525]
        RESERVED
        - piwigo <not-affected> (incomplete fix not applied to Debian package)
@@ -3336,7 +3336,7 @@
        - icedove 10.0.9-1
        - iceape 2.7.9-1
 CVE-2012-4183 (Use-after-free vulnerability in the 
DOMSVGTests::GetRequiredFeatures ...)
-       - iceweasel <unfixed>
+       - iceweasel 10.0.8esr-1
        - icedove 10.0.9-1
        - iceape <unfixed>
 CVE-2012-4182 (Use-after-free vulnerability in the nsTextEditRules::WillInsert 
...)
@@ -4230,7 +4230,8 @@
 CVE-2012-3819 (Stack consumption vulnerability in dartwebserver.dll 1.9 and 
earlier, ...)
        NOT-FOR-US: dartwebserver.dll
 CVE-2012-3818 (The fpm exporter in Revelation 0.4.13-2 and earlier encrypts 
the ...)
-       - revelation <unfixed> (bug #680059)
+       - revelation 0.4.13-1.2 (bug #680059)
+       [squeeze] - revelation <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3818
        NOTE: 
http://knoxin.blogspot.co.uk/2012/06/revelation-password-manager-considered.html
        NOTE: http://als.regnet.cz/fpm2/feedback/2
@@ -5068,7 +5069,7 @@
 CVE-2012-3455 (Heap-based buffer overflow in the read function in ...)
        - koffice <removed>
 CVE-2012-3454 (eXtplorer 2.1.0b6 uses world writable permissions for the ...)
-       - extplorer <unfixed> (bug #683649)
+       - extplorer 2.1.0b6+dfsg.3-4 (bug #683649)
 CVE-2012-3453 (logol 1.5.0 uses world writable permissions for the ...)
        - logol 1.5.0-4 (bug #683647)
 CVE-2012-3452 (gnome-screensaver 3.4.x before 3.4.4 and 3.5.x before 3.5.4, 
when ...)
@@ -8104,6 +8105,7 @@
        RESERVED
 CVE-2012-2249
        RESERVED
+       - tor 0.2.3.23-rc-1
 CVE-2012-2248 [build-influenced PATH set in dhclient]
        RESERVED
        - isc-dhcp 4.2.4-3 (bug #690532)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to