Author: jmm Date: 2011-09-27 06:22:16 +0000 (Tue, 27 Sep 2011) New Revision: 17304 Modified: data/CVE/list Log: new quagga issues fix fixed version for libav Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-09-26 21:14:21 UTC (rev 17303) +++ data/CVE/list 2011-09-27 06:22:16 UTC (rev 17304) @@ -1028,7 +1028,7 @@ [lenny] - linux-2.6 <not-affected> (vulnerability introduced in commit 1bfe73c2) CVE-2011-3362 [libavcodec insufficient boundary check in CAVS] RESERVED - - libav 4:0.6-1 (bug #641478) + - libav 4:0.7.1-7 (bug #641478) - ffmpeg <removed> - ffmpeg-debian <end-of-life> NOTE: http://www.ocert.org/advisories/ocert-2011-002.html @@ -1134,14 +1134,19 @@ RESERVED CVE-2011-3327 RESERVED + - quagga 0.99.19-1 CVE-2011-3326 RESERVED + - quagga 0.99.19-1 CVE-2011-3325 RESERVED + - quagga 0.99.19-1 CVE-2011-3324 RESERVED + - quagga 0.99.19-1 CVE-2011-3323 RESERVED + - quagga 0.99.19-1 CVE-2011-3322 (Core Server HMI Service (Coreservice.exe) in Scadatec Limited Procyon ...) NOT-FOR-US: Scadatec Limited Procyon SCADA CVE-2011-3321 (Heap-based buffer overflow in the Siemens WinCC Runtime Advanced ...)