Secure testing commits - Jul 2011 - r17038 - data/CVE

Author: jmm
Date: 2011-07-29 11:07:34 +0000 (Fri, 29 Jul 2011)
New Revision: 17038

Modified:
   data/CVE/list
Log:
new ruby issues
systemtap fixed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-07-29 09:27:49 UTC (rev 17037)
+++ data/CVE/list	2011-07-29 11:07:34 UTC (rev 17038)
@@ -528,6 +528,9 @@
 	RESERVED
 CVE-2011-2705
 	RESERVED
+	- ruby1.8 <unfixed> (low; bug #635878)
+	- ruby1.9 <unfixed> (low)
+	- ruby1.9.1 <unfixed> (low)
 CVE-2011-2704 [mapserver buffer overflows in OGC filters]
 	RESERVED
 	{DSA-2285-1}
@@ -585,6 +588,9 @@
 	- drupal6 <not-affected>
 CVE-2011-2686
 	RESERVED
+	- ruby1.8 <unfixed> (low; bug #635878)
+	- ruby1.9 <unfixed> (low)
+	- ruby1.9.1 <unfixed> (low)
 CVE-2011-2685 (Stack-based buffer overflow in the Lotus Word Pro import filter
in ...)
 	{DSA-2275-1}
 	- libreoffice 1:3.3.3-1
@@ -1062,10 +1068,10 @@
 	RESERVED
 CVE-2011-2503
 	RESERVED
-	- systemtap <unfixed> (bug #635542)
+	- systemtap 1.6-1 (bug #635542)
 CVE-2011-2502
 	RESERVED
-	- systemtap <unfixed> (bug #635542)
+	- systemtap 1.6-1 (bug #635542)
 CVE-2011-2501 (The png_format_buffer function in pngerror.c in libpng 1.0.x
before ...)
 	{DSA-2287-1}
 	- libpng 1.2.44-3 (bug #632786)
@@ -2986,7 +2992,7 @@
 	- gimp 2.6.11-3 (bug #629830)
 CVE-2011-1781
 	RESERVED
-	- systemtap <unfixed> (bug #628819)
+	- systemtap 1.6-1 (bug #628819)
 	[squeeze] - systemtap <not-affected> (Only affects version 1.4.x)
 	[lenny] - systemtap <not-affected> (Only affects version 1.4.x)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=702687#c29
@@ -3022,7 +3028,7 @@
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.29 with commit
e77b8363b2ea7c0d89919547c1a8b0562f298b57)
 CVE-2011-1769
 	RESERVED
-	- systemtap <unfixed> (bug #628819)
+	- systemtap 1.6-1 (bug #628819)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=702687#c29
 	NOTE:
http://sourceware.org/git/?p=systemtap.git;a=commit;h=fa2e3415185a28542d419a641ecd6cddd52e3cd9
 CVE-2011-1768
@@ -7670,7 +7676,7 @@
 CVE-2011-0227 (The queueing primitives in IOMobileFrameBuffer in Apple iOS
before ...)
 	NOT-FOR-US: Apple iOS
 CVE-2011-0226 (Integer signedness error in psaux/t1decode.c in FreeType before
2.4.6, ...)
-	- freetype <unfixed> (bug filed)
+	- freetype <unfixed> (bug #635871)
 CVE-2011-0225 (WebKit, as used in Apple Safari before 5.0.6, allows remote
attackers ...)
 	- chromium-browser <undetermined>
 	- webkit <undetermined>