Moritz Muehlenhoff
2012-Apr-23 17:18 UTC
[Secure-testing-commits] r19042 - in data: CVE DSA
Author: jmm
Date: 2012-04-23 17:18:44 +0000 (Mon, 23 Apr 2012)
New Revision: 19042
Modified:
data/CVE/list
data/DSA/list
Log:
dropbear DSA
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-04-23 16:56:50 UTC (rev 19041)
+++ data/CVE/list 2012-04-23 17:18:44 UTC (rev 19042)
@@ -4708,6 +4708,7 @@
CVE-2012-0444 (Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird
before ...)
{DSA-2412-1 DSA-2406-1 DSA-2402-1 DSA-2400-1}
- libvorbisidec <unfixed> (bug #669196)
+ [squeeze] - libvorbisidec <no-dsa> (Minor issue, no dev-deps)
- libvorbis 1.3.2-1.2 (bug #664197)
- icedove <unfixed>
[lenny] - icedove <not-affected> (Vulnerable code not present)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2012-04-23 16:56:50 UTC (rev 19041)
+++ data/DSA/list 2012-04-23 17:18:44 UTC (rev 19042)
@@ -1,3 +1,6 @@
+[23 Apr 2012] DSA-2456-1 dropbear - use after free
+ {CVE-2012-0920}
+ [squeeze] - dropbear 0.52-5+squeeze1
[20 Apr 2012] DSA-2455-1 typo3-src - cross site scripting
{CVE-2012-2112}
[squeeze] - typo3-src 4.3.9+dfsg1-1+squeeze4