Moritz Muehlenhoff
2012-Mar-21 10:09 UTC
[Secure-testing-commits] r18724 - in data: . CVE DSA
Author: jmm
Date: 2012-03-21 10:09:33 +0000 (Wed, 21 Mar 2012)
New Revision: 18724
Modified:
data/CVE/list
data/DSA/list
data/next-point-update.txt
data/spu-candidates.txt
Log:
file CVEfied
libcap spu upload
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-03-20 21:14:29 UTC (rev 18723)
+++ data/CVE/list 2012-03-21 10:09:33 UTC (rev 18724)
@@ -458,8 +458,10 @@
RESERVED
CVE-2012-1572
RESERVED
-CVE-2012-1571
+CVE-2012-1571 [CDF crasher bugs in file, found by CERT/CC BFF tool]
RESERVED
+ - file <unfixed> (low)
+ [squeeze] - file 5.04-5+squeeze1
CVE-2012-1570
RESERVED
CVE-2012-1569
@@ -1019,9 +1021,6 @@
RESERVED
CVE-2012-1297 (Multiple cross-site request forgery (CSRF) vulnerabilities in
main.php ...)
NOT-FOR-US: Contao
-CVE-2012-XXXX [CDF crasher bugs in file, found by CERT/CC BFF tool]
- - file <unfixed> (low)
- [squeeze] - file 5.04-5+squeeze1
CVE-2012-1296
RESERVED
CVE-2012-1295
Modified: data/DSA/list
==================================================================---
data/DSA/list 2012-03-20 21:14:29 UTC (rev 18723)
+++ data/DSA/list 2012-03-21 10:09:33 UTC (rev 18724)
@@ -40,6 +40,7 @@
[02 Mar 2012] DSA-2423-1 movabletype-opensource - several
[squeeze] - movabletype-opensource 4.3.8+dfsg-0+squeeze2
[29 Feb 2012] DSA-2422-1 file - missing bounds check
+ {CVE-2012-1571}
[squeeze] - file 5.04-5+squeeze1
[29 Feb 2012] DSA-2421-1 moodle - several
{CVE-2011-4308 CVE-2011-4584 CVE-2011-4585 CVE-2011-4586 CVE-2011-4587
CVE-2011-4588 CVE-2012-0792 CVE-2012-0793 CVE-2012-0794 CVE-2012-0795
CVE-2012-0796}
Modified: data/next-point-update.txt
==================================================================---
data/next-point-update.txt 2012-03-20 21:14:29 UTC (rev 18723)
+++ data/next-point-update.txt 2012-03-21 10:09:33 UTC (rev 18724)
@@ -22,8 +22,6 @@
[squeeze] - tremulous 1.1.0-7~squeeze1
CVE-2011-1784
[squeeze] - keepalived 1:1.1.20-1+squeeze1
+CVE-2011-4099
+ [squeeze] - libcap2 1:2.19-3
-
-
-
-
Modified: data/spu-candidates.txt
==================================================================---
data/spu-candidates.txt 2012-03-20 21:14:29 UTC (rev 18723)
+++ data/spu-candidates.txt 2012-03-21 10:09:33 UTC (rev 18724)
@@ -131,11 +131,6 @@
--
-libcap2 (CVE-2011-4099)
-maintainer notified
-
---
-
libxslt (CVE-2011-3970)
#660650
http://git.gnome.org/browse/libxslt/commit/?id=fe5a4fa33eb85bce3253ed3742b1ea6c4b59b41b