Author: jmm Date: 2012-05-04 13:34:12 +0000 (Fri, 04 May 2012) New Revision: 19140 Modified: data/CVE/list Log: new wordpress issues libav issue also affects ffmpeg mysql 5.5 also fixed now perl issue unimportant Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-04 13:15:50 UTC (rev 19139) +++ data/CVE/list 2012-05-04 13:34:12 UTC (rev 19140) @@ -90,17 +90,17 @@ CVE-2012-2405 (Gallery 2 before 2.3.2 and 3 before 3.0.3 does not properly implement ...) TODO: check CVE-2012-2404 (wp-comments-post.php in WordPress before 3.3.2 supports offsite ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2012-2403 (wp-includes/formatting.php in WordPress before 3.3.2 attempts to ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2012-2402 (wp-admin/plugins.php in WordPress before 3.3.2 allows remote ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2012-2401 (Plupload before 1.5.4, as used in wp-includes/js/plupload/ in ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2012-2400 (Unspecified vulnerability in wp-includes/js/swfobject.js in WordPress ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2012-2399 (Unspecified vulnerability in wp-includes/js/swfupload/swfupload.swf in ...) - TODO: check + - wordpress 3.3.2+dfsg-1 CVE-2010-5136 RESERVED CVE-2010-5135 @@ -1781,7 +1781,7 @@ CVE-2012-1703 RESERVED - mysql-5.1 5.1.62-1 (bug #670636) - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-1702 RESERVED CVE-2012-1701 @@ -1794,10 +1794,10 @@ RESERVED CVE-2012-1697 RESERVED - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-1696 RESERVED - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-1695 RESERVED CVE-2012-1694 @@ -1811,13 +1811,13 @@ CVE-2012-1690 RESERVED - mysql-5.1 5.1.62-1 (bug #670636) - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-1689 RESERVED CVE-2012-1688 RESERVED - mysql-5.1 5.1.62-1 (bug #670636) - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-1687 RESERVED CVE-2012-1686 @@ -3619,9 +3619,9 @@ CVE-2012-0947 [Heap-based Buffer Overflow in libavcodec] RESERVED - libav <unfixed> + - ffmpeg <removed> NOTE: https://bugs.launchpad.net/ubuntu/+source/libav/+bug/980963 NOTE: http://www.openwall.com/lists/oss-security/2012/05/03/4 - TODO: check CVE-2012-0946 (The NVIDIA UNIX driver before 295.40 allows local users to access ...) - nvidia-graphics-drivers 295.40-1 [squeeze] - nvidia-graphics-drivers <no-dsa> (Non-free not supported) @@ -4526,7 +4526,7 @@ CVE-2012-0583 RESERVED - mysql-5.1 5.1.62-1 (bug #670636) - - mysql-5.5 <unfixed> + - mysql-5.5 5.5.23-1 CVE-2012-0582 RESERVED CVE-2012-0581 @@ -8744,8 +8744,8 @@ NOT-FOR-US: perl Batch::BatchRun CPAN module CVE-2011-4116 RESERVED - - perl <unfixed> - TODO: check + - perl <unfixed> (unimportant) + NOTE: http://thread.gmane.org/gmane.comp.security.oss.general/6174/focus=6177 CVE-2011-4115 RESERVED - libparallel-forkmanager-perl <unfixed> (low; bug #610384)