Author: jmm Date: 2012-04-23 10:58:52 +0000 (Mon, 23 Apr 2012) New Revision: 19039 Modified: data/CVE/list data/spu-candidates.txt Log: old kernel issue fixed ruby fixed bugzilla no-dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-04-23 05:46:32 UTC (rev 19038) +++ data/CVE/list 2012-04-23 10:58:52 UTC (rev 19039) @@ -1862,8 +1862,7 @@ [squeeze] - taglib <no-dsa> (Minor issue) CVE-2012-1583 RESERVED - - linux-2.6 <unfixed> - TODO: check + - linux-2.6 2.6.22-1 CVE-2012-1582 RESERVED - mediawiki <unfixed> (bug #666269) @@ -4587,12 +4586,12 @@ RESERVED CVE-2012-0466 RESERVED - - bugzilla <removed> - TODO: check + - bugzilla <removed> (low) + [squeeze] - bugzilla <no-dsa> (Minor issue) CVE-2012-0465 RESERVED - - bugzilla <removed> - TODO: check + - bugzilla <removed> (low) + [squeeze] - bugzilla <no-dsa> (Minor issue) CVE-2012-0464 (Use-after-free vulnerability in the browser engine in Mozilla Firefox ...) - icedove <unfixed> [squeeze] - icedove <not-affected> (Vulnerable code not present) @@ -6020,7 +6019,7 @@ CVE-2011-4816 (SQL injection vulnerability in the KPI component in IBM Maximo Asset ...) NOT-FOR-US: IBM Maximo Asset Management CVE-2011-4815 (Ruby (aka CRuby) before 1.8.7-p357 computes hash values without ...) - - ruby1.8 <unfixed> + - ruby1.8 1.8.7.358-1 - ruby1.9 <not-affected> (Includes randomisation of the hash function) - ruby1.9.1 <not-affected> (Includes randomisation of the hash function) CVE-2012-0185 Modified: data/spu-candidates.txt ==================================================================--- data/spu-candidates.txt 2012-04-23 05:46:32 UTC (rev 19038) +++ data/spu-candidates.txt 2012-04-23 10:58:52 UTC (rev 19039) @@ -40,7 +40,12 @@ http://bugs.bitlbee.org/bitlbee/ticket/852 http://bugs.bitlbee.org/bitlbee/changeset/devel%2C856#file3 +-- +bugzilla (CVE-2012-0465, CVE-2012-0466) +https://bugzilla.mozilla.org/show_bug.cgi?id=728639 +https://bugzilla.mozilla.org/show_bug.cgi?id=745397 + -- cedet (CVE-2012-0035)