thr3ads.net - Secure testing commits - [Secure-testing-commits] r19540

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2012-Jun-20 15:01 UTC

[Secure-testing-commits] r19540 - in data: CVE DSA

Author: jmm
Date: 2012-06-20 15:01:12 +0000 (Wed, 20 Jun 2012)
New Revision: 19540

Modified:
   data/CVE/list
   data/DSA/list
Log:
new mysql issues (one issue already fixed in DSA)
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-06-20 14:12:23 UTC (rev 19539)
+++ data/CVE/list	2012-06-20 15:01:12 UTC (rev 19540)
@@ -586,9 +586,9 @@
 CVE-2012-3290 (Multiple unspecified vulnerabilities in Google Chrome before
...)
 	NOT-FOR-US: Chrome books
 CVE-2012-3289 (VMware Workstation 8.x before 8.0.4, VMware Player 4.x before
4.0.4, ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2012-3288 (VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware
...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2012-3287 (Poul-Henning Kamp md5crypt has insufficient algorithmic
complexity and ...)
 	NOT-FOR-US: md5crypt
 CVE-2012-3286
@@ -1250,7 +1250,7 @@
 CVE-2012-2960
 	RESERVED
 CVE-2012-2959 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: BMC
 CVE-2012-2958
 	RESERVED
 CVE-2012-2957
@@ -1693,8 +1693,11 @@
 	RESERVED
 CVE-2012-2750
 	RESERVED
+	- mysql-5.5 5.5.24+dfsg-1
 CVE-2012-2749
 	RESERVED
+	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.24+dfsg-1
 CVE-2012-2748 [Joomla! Core - Information Disclosure
471-20120602-core-information-disclosure.html]
 	RESERVED
 	- joomla <itp> (bug #571794)
@@ -1992,15 +1995,15 @@
 CVE-2012-2636
 	RESERVED
 CVE-2012-2635 (The Dolphin Browser HD application before 7.6 and Dolphin for
Pad ...)
-	TODO: check
+	NOT-FOR-US: Dolphin
 CVE-2012-2634 (Cross-site scripting (XSS) vulnerability in FeedDemon before
4.0, when ...)
-	TODO: check
+	NOT-FOR-US: FeedDemon
 CVE-2012-2633 (Cross-site scripting (XSS) vulnerability in wassup.php in the
WassUp ...)
-	TODO: check
+	NOT-FOR-US: WassUp
 CVE-2012-2632 (SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1
2.30 ...)
-	TODO: check
+	NOT-FOR-US: SEIL routers
 CVE-2012-2631 (Cross-site scripting (XSS) vulnerability in WEBLOGIC @WEB
ShoppingCart ...)
-	TODO: check
+	NOT-FOR-US: WEBLOGIC
 CVE-2012-2630 (The Puella Magi Madoka Magica iP application 1.05 and earlier
for ...)
 	NOT-FOR-US: Puella Magi Madoka Magica iP (Android application)
 CVE-2012-2629

Modified: data/DSA/list
==================================================================---
data/DSA/list	2012-06-20 14:12:23 UTC (rev 19539)
+++ data/DSA/list	2012-06-20 15:01:12 UTC (rev 19540)
@@ -1,5 +1,5 @@
 [18 Jun 2012] DSA-2496-1 mysql-5.1 - several
-	{CVE-2012-0583 CVE-2012-1688 CVE-2012-1690 CVE-2012-1703 CVE-2012-2122}
+	{CVE-2012-0583 CVE-2012-1688 CVE-2012-1690 CVE-2012-1703 CVE-2012-2122
CVE-2012-2749}
 	[squeeze] - mysql-5.1 5.1.63-0+squeeze1
 [16 Jun 2012] DSA-2495-1 openconnect - buffer overflow
 	{CVE-2012-3291}

Secure testing commits - Jun 2012 - r19540 - in data: CVE DSA

[Secure-testing-commits] r19540 - in data: CVE DSA