Author: jmm Date: 2012-02-02 09:00:00 +0000 (Thu, 02 Feb 2012) New Revision: 18362 Modified: data/CVE/list Log: iceape, apache2 fixed new samba issue (fixed in sid, doesn''t affect stable/oldstable) Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-02-01 21:14:57 UTC (rev 18361) +++ data/CVE/list 2012-02-02 09:00:00 UTC (rev 18362) @@ -271,7 +271,9 @@ CVE-2012-0818 RESERVED CVE-2012-0817 (Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote ...) - TODO: check + - samba 2:3.6.3-1 (low) + [squeeze] - samba <not-affected> (Only affects 3.6.x) + [lenny] - samba <not-affected> (Only affects 3.6.x) CVE-2012-0816 RESERVED CVE-2012-0815 @@ -1088,7 +1090,7 @@ - xulrunner <removed> - iceweasel 10.0-1 [lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses Xulrunner from the xulrunner source pkg) - - iceape <unfixed> + - iceape 2.0.14-10 [lenny] - iceape <not-affected> (Only a stub package) CVE-2012-0448 RESERVED @@ -1124,7 +1126,7 @@ - xulrunner <not-affected> (Vulnerable code not present) - iceweasel 10.0-1 [lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses Xulrunner from the xulrunner source pkg) - - iceape <unfixed> + - iceape 2.0.14-10 [lenny] - iceape <not-affected> (Only a stub package) CVE-2012-0443 [mfsa2012-01 part 1] RESERVED @@ -1140,7 +1142,7 @@ - xulrunner <removed> - iceweasel 10.0-1 [lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses Xulrunner from the xulrunner source pkg) - - iceape <unfixed> + - iceape 2.0.14-10 [lenny] - iceape <not-affected> (Only a stub package) CVE-2012-0441 RESERVED @@ -2914,7 +2916,7 @@ RESERVED NOT-FOR-US: golismero not in Debian CVE-2012-0053 (protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not ...) - - apache2 <unfixed> (low) + - apache2 2.2.22-1 (low) CVE-2012-0052 RESERVED CVE-2012-0051 @@ -2991,7 +2993,7 @@ CVE-2012-0032 RESERVED CVE-2012-0031 (scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow ...) - - apache2 <unfixed> (low) + - apache2 2.2.22-1 (low) CVE-2012-0030 (Nova 2011.3 and Essex, when using the OpenStack API, allows remote ...) - nova <unfixed> CVE-2012-0029 (Heap-based buffer overflow in the process_tx_desc function in the ...) @@ -3022,7 +3024,7 @@ - tomcat6 6.0.35-1 - tomcat7 7.0.23-1 CVE-2012-0021 (The log_cookie function in mod_log_config.c in the mod_log_config ...) - - apache2 <unfixed> + - apache2 2.2.22-1 [squeeze] - apache2 <not-affected> (Introduced in 2.2.17) [lenny] - apache2 <not-affected> (Introduced in 2.2.17) CVE-2011-4695 (Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is ...) @@ -6096,7 +6098,7 @@ - xulrunner <removed> - iceweasel 7.0-1 [lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses Xulrunner from the xulrunner source pkg) - - iceape <unfixed> + - iceape 2.0.14-10 [lenny] - iceape <not-affected> (Only a stub package) CVE-2011-3669 (Cross-site request forgery (CSRF) vulnerability in attachment.cgi in ...) - bugzilla <removed> (low)