Secure testing commits - Feb 2012 - r18476 - data/CVE

Author: jmm
Date: 2012-02-19 18:56:14 +0000 (Sun, 19 Feb 2012)
New Revision: 18476

Modified:
   data/CVE/list
Log:
no-dsa for non-free pkgs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-02-19 14:43:21 UTC (rev 18475)
+++ data/CVE/list	2012-02-19 18:56:14 UTC (rev 18476)
@@ -1499,12 +1499,14 @@
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0507
 	RESERVED
 CVE-2012-0506 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0505 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	TODO: check
 CVE-2012-0504 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
@@ -1515,30 +1517,37 @@
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0502 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0501 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0500 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0499 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0498 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0497 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0496 (Unspecified vulnerability in the MySQL Server component in
Oracle ...)
 	- mysql-5.1 <not-affected> (Only affects MySQL 5.5 from experimental)
 CVE-2012-0495 (Unspecified vulnerability in the MySQL Server component in
Oracle ...)
@@ -2177,6 +2186,7 @@
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 	- glassfish <unfixed> (bug #653964)
 CVE-2011-5034 (Apache Geronimo 2.2.1 and earlier computes hash values for form
...)
 	TODO: check
@@ -2801,6 +2811,7 @@
 	RESERVED
 CVE-2011-4838 (JRuby before 1.6.5.1 computes hash values without restricting
the ...)
 	- jruby <unfixed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2012-0220
 	RESERVED
 CVE-2012-0219
@@ -7089,6 +7100,7 @@
 	- openjdk-6 <unfixed>
 	- openjdk-7 <unfixed>
 	- sun-java6 <removed>
+	[squeeze] - sun-java6 <no-dsa> (Non-free not supported)
 	NOTE: CVE description is wrong
 CVE-2011-3570 (Unspecified vulnerability in Oracle Communications Unified 7.0
allows ...)
 	NOT-FOR-US: Oracle Communications Unified