Author: jmm Date: 2012-06-12 08:30:24 +0000 (Tue, 12 Jun 2012) New Revision: 19470 Modified: data/CVE/list Log: rubygems fixed libav fixed recent mysql auth bypass also affects 5.5, already fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-06-12 06:59:18 UTC (rev 19469) +++ data/CVE/list 2012-06-12 08:30:24 UTC (rev 19470) @@ -2845,10 +2845,10 @@ [squeeze] - linux-2.6 <not-affected> (Introduced in 3.1) CVE-2012-2126 RESERVED - - rubygems <unfixed> (bug #670228) + - rubygems 1.8.24-1 (bug #670228) CVE-2012-2125 RESERVED - - rubygems <unfixed> (bug #670228) + - rubygems 1.8.24-1 (bug #670228) CVE-2012-2124 RESERVED - squirrelmail <not-affected> (Incorrect RedHat security update) @@ -2858,6 +2858,7 @@ CVE-2012-2122 [mysql authentication bypass] RESERVED - mysql-5.1 <unfixed> (bug #677018) + - mysql-5.5 5.5.24+dfsg-1 NOTE: https://www.secmaniac.com/blog/2012/06/11/massive-mysql-authentication-bypass-exploit/ NOTE: http://seclists.org/oss-sec/2012/q2/493 CVE-2012-2121 (The KVM implementation in the Linux kernel before 3.3.4 does not ...) @@ -5901,6 +5902,8 @@ RESERVED CVE-2012-0851 RESERVED + - libav 6:0.8.3-1 + - ffmpeg <removed> CVE-2012-0850 RESERVED CVE-2012-0849 @@ -11529,7 +11532,7 @@ RESERVED CVE-2011-3937 RESERVED - - libav 4:0.8.1-1 + - libav 4:0.8.3-1 - ffmpeg <removed> CVE-2011-3936 RESERVED