Secure testing commits - Jan 2012 - r18342 - data/CVE

Author: jmm
Date: 2012-01-31 08:11:52 +0000 (Tue, 31 Jan 2012)
New Revision: 18342

Modified:
   data/CVE/list
Log:
kernel fixes from point update


Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-01-31 08:05:20 UTC (rev 18341)
+++ data/CVE/list	2012-01-31 08:11:52 UTC (rev 18342)
@@ -2882,6 +2882,7 @@
 CVE-2012-0044
 	RESERVED
 	- linux-2.6 3.1.5-1
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2012-0043 [wireshark RLC buffer overflow] 
 	RESERVED
 	- wireshark 1.6.5-1
@@ -3960,6 +3961,7 @@
 	NOTE: Duplicate of CVE-2011-4110, will be rejected
 CVE-2011-4330 (Stack-based buffer overflow in the hfs_mac2asc function in ...)
 	- linux-2.6 3.1.4-1
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-4329 (Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr
3.1.0 ...)
 	- dolibarr <itp> (bug #634783)
 CVE-2011-4328 [gnash cookie infoleak]
@@ -3973,6 +3975,7 @@
 CVE-2011-4326
 	RESERVED
 	- linux-2.6 2.6.39-1
+	[squeeze] - linux-2.6 2.6.32-40
 	[lenny] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2011-4325 (The NFS implementation in Linux kernel before 2.6.31-rc6 calls
certain ...)
 	TODO: check
@@ -4599,7 +4602,8 @@
 	{DSA-2262-1}
 	- moodle 1.9.9.dfsg2-3
 CVE-2011-4132 (The cleanup_journal_tail function in the Journaling Block Device
(JBD) ...)
-	- linux-2.6 <unfixed>
+	- linux-2.6 3.1.6-1
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-4131
 	RESERVED
 	- linux-2.6 <unfixed>
@@ -8998,6 +9002,7 @@
 CVE-2011-2699
 	RESERVED
 	- linux-2.6 3.0.0-2
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-2698 (Off-by-one error in the elem_cell_id_aux function in ...)
 	- wireshark 1.6.1-1 (unimportant)
 	NOTE: no code injection, not treated as a security issue, see
README.Debian.security
@@ -9560,6 +9565,7 @@
 CVE-2011-2494
 	RESERVED
 	- linux-2.6 3.0.0-5 (low)
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-2493
 	RESERVED
 	- linux-2.6 2.6.39-1 (low)
@@ -10353,7 +10359,8 @@
 	- linux-2.6 2.6.32-1
 	NOTE: Support for Alpha was dropped with Squeeze, so marking 2.6.32 as fixed
 CVE-2011-2203 (The hfs_find_init function in the Linux kernel 2.6 allows local
users ...)
-	- linux-2.6 <unfixed>
+	- linux-2.6 3.1.1-1
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-2202 (The rfc1867_post_handler function in main/rfc1867.c in PHP
before ...)
 	{DSA-2266-1}
 	- php5 5.3.6-12
@@ -13323,9 +13330,11 @@
 	- linux-2.6 2.6.38-1
 CVE-2011-1162 (The tpm_read function in the Linux kernel 2.6 does not properly
clear ...)
 	- linux-2.6 3.0.0-5 (low)
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-1161
 	REJECTED
 	- linux-2.6 3.0.0-5 (low)
+	[squeeze] - linux-2.6 2.6.32-40
 CVE-2011-1160
 	RESERVED
 	{DSA-2264-1 DSA-2240-1}