Secure testing commits - Jul 2012 - r19720 - data/CVE

Author: fgeek-guest
Date: 2012-07-11 21:57:33 +0000 (Wed, 11 Jul 2012)
New Revision: 19720

Modified:
   data/CVE/list
Log:
CVE-2012-3404, CVE-2012-3405, CVE-2012-3406 glibc formatted printing
vulnerabilities

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-07-11 21:49:10 UTC (rev 19719)
+++ data/CVE/list	2012-07-11 21:57:33 UTC (rev 19720)
@@ -1108,12 +1108,31 @@
 	NOTE: http://puppetlabs.com/security/cve/cve-2012-3408/
 CVE-2012-3407
 	RESERVED
-CVE-2012-3406
+CVE-2012-3406 [glibc formatted printing vulnerabilities]
 	RESERVED
-CVE-2012-3405
+	TODO: check if Debian packages are affected
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=826943
+	NOTE: https://bugzilla.redhat.com/attachment.cgi?id=594722&action=diff
+	NOTE: https://bugzilla.redhat.com/attachment.cgi?id=594727&action=diff
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/5
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/17
+CVE-2012-3405 [glibc formatted printing vulnerabilities]
 	RESERVED
-CVE-2012-3404
+	TODO: check if Debian packages are affected
+	NOTE: http://sourceware.org/bugzilla/show_bug.cgi?id=13446 
+	NOTE:
http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=a4647e727a2a52e1259474c13f4b13288938bed4
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=833704
+	NOTE:
http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=1d498daa95384e5c9ad5bcb35e7a996e5869ac39
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/5
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/17
+CVE-2012-3404 [glibc formatted printing vulnerabilities]
 	RESERVED
+	TODO: check if Debian packages are affected
+	NOTE: http://sourceware.org/bugzilla/show_bug.cgi?id=12445 
+	NOTE:
http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=84a4211850e3d23a9d3a4f3b294752a3b30bc0ff
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=833703
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/5
+	NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/17
 CVE-2012-3403
 	RESERVED
 CVE-2012-3402