thr3ads.net - Secure testing commits - [Secure-testing-commits] r17292

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2011-Sep-26 07:33 UTC

[Secure-testing-commits] r17292 - in data: . CVE DSA

Author: jmm
Date: 2011-09-26 07:33:42 +0000 (Mon, 26 Sep 2011)
New Revision: 17292

Modified:
   data/CVE/list
   data/DSA/list
   data/next-oldstable-point-update.txt
   data/next-point-update.txt
Log:
- add missing CVE ID for lenny kernel DSA
- record spu/ospu fixes for v86d
- fcgi-perl fixed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-09-25 21:13:05 UTC (rev 17291)
+++ data/CVE/list	2011-09-26 07:33:42 UTC (rev 17292)
@@ -2192,7 +2192,7 @@
 CVE-2011-2767
 	RESERVED
 CVE-2011-2766 (The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as
used by ...)
-	- libfcgi-perl <unfixed> (bug #607479)
+	- libfcgi-perl 0.73-2 (bug #607479)
 	[lenny] - libfcgi-perl <not-affected> (Introduced in 0.70)
 CVE-2011-2765 [pyro: insecure use of temporary pid file]
 	RESERVED
@@ -3658,13 +3658,16 @@
 	RESERVED
 	{DSA-2310-1}
 	- linux-2.6 2.6.32-1
+	NOTE: Support for Alpha was dropped with Squeeze, so marking 2.6.32 as fixed
 CVE-2011-2210 [Alpha-specific issue]
 	RESERVED
 	- linux-2.6 2.6.32-1
+	NOTE: Support for Alpha was dropped with Squeeze, so marking 2.6.32 as fixed
 CVE-2011-2211 [Alpha-specific issue]
 	RESERVED
 	{DSA-2310-1}
 	- linux-2.6 2.6.32-1
+	NOTE: Support for Alpha was dropped with Squeeze, so marking 2.6.32 as fixed
 CVE-2011-2203 [HFS DoS]
 	RESERVED
 	- linux-2.6 <unfixed>

Modified: data/DSA/list
==================================================================---
data/DSA/list	2011-09-25 21:13:05 UTC (rev 17291)
+++ data/DSA/list	2011-09-26 07:33:42 UTC (rev 17292)
@@ -1,5 +1,5 @@
 [22 Sep 2011] DSA-2310-1 linux-2.6 - several issues
-	{CVE-2009-4067 CVE-2011-0712 CVE-2011-1020 CVE-2011-2209 CVE-2011-2211
CVE-2011-2213 CVE-2011-2484 CVE-2011-2491 CVE-2011-2492 CVE-2011-2495
CVE-2011-2496 CVE-2011-2497 CVE-2011-2525 CVE-2011-2928 CVE-2011-3188
CVE-2011-3191}
+	{CVE-2009-4067 CVE-2011-0712 CVE-2011-1020 CVE-2011-2208 CVE-2011-2209
CVE-2011-2211 CVE-2011-2213 CVE-2011-2484 CVE-2011-2491 CVE-2011-2492
CVE-2011-2495 CVE-2011-2496 CVE-2011-2497 CVE-2011-2525 CVE-2011-2928
CVE-2011-3188 CVE-2011-3191}
 	[lenny] - linux-2.6 2.6.26-26lenny4
 [13 Sep 2011] DSA-2309-1 openssl - compromised certificate authority
 	{CVE-2011-1945}

Modified: data/next-oldstable-point-update.txt
==================================================================---
data/next-oldstable-point-update.txt	2011-09-25 21:13:05 UTC (rev 17291)
+++ data/next-oldstable-point-update.txt	2011-09-26 07:33:42 UTC (rev 17292)
@@ -54,4 +54,8 @@
 	[lenny] - aptitude 0.4.11.11-1~lenny2 (bug #612034)
 CVE-2011-XXXX
 	[lenny] - atop 1.23-1+lenny1 (bug #622794)
+CVE-2011-1070
+	RESERVED
+	[lenny] - v86d 0.1.5.2-1+lenny1
 
+

Modified: data/next-point-update.txt
==================================================================---
data/next-point-update.txt	2011-09-25 21:13:05 UTC (rev 17291)
+++ data/next-point-update.txt	2011-09-26 07:33:42 UTC (rev 17292)
@@ -24,3 +24,6 @@
 	[squeeze] - atop 1.23-1+squeeze1 (bug #622794)
 CVE-2011-3354
 	[squeeze] - quassel 0.6.3-2+squeeze1 (bug #640960)
+CVE-2011-1070
+	RESERVED
+	[squeeze] - v86d 0.1.9-1+squeeze1

Secure testing commits - Sep 2011 - r17292 - in data: . CVE DSA

[Secure-testing-commits] r17292 - in data: . CVE DSA