Author: geissert Date: 2012-02-24 23:30:50 +0000 (Fri, 24 Feb 2012) New Revision: 18539 Modified: data/CVE/list Log: more package references, linux, krb, python, etc I could keep going... Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-02-24 23:16:18 UTC (rev 18538) +++ data/CVE/list 2012-02-24 23:30:50 UTC (rev 18539) @@ -604,6 +604,9 @@ RESERVED CVE-2012-1012 RESERVED + - krb5 <unfixed> + - heimdal <unfixed> + TODO: check CVE-2012-1011 (actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows ...) NOT-FOR-US: Wordpress plugin CVE-2012-1010 (Unrestricted file upload vulnerability in actions.php in the ...) @@ -902,6 +905,8 @@ RESERVED CVE-2012-0879 RESERVED + - linux-2.6 <unfixed> + TODO: check CVE-2012-0878 [python-pastescript improper privilege dropping] RESERVED - python-pastescript <unfixed> (low; bug #661061) @@ -976,8 +981,17 @@ RESERVED CVE-2012-0846 RESERVED + - webcalendar <unfixed> + TODO: check CVE-2012-0845 RESERVED + - python3.1 <removed> + - python3.2 <unfixed> + - python2.7 <unfixed> + - python2.6 <unfixed> + - python2.5 <removed> + - python2.4 <removed> + TODO: check CVE-2012-0844 RESERVED - netsurf 2.8-2 (bug #659376) @@ -1083,6 +1097,8 @@ NOTE: http://seclists.org/oss-sec/2012/q1/285 CVE-2012-0810 RESERVED + - linux-2.6 <unfixed> + TODO: check CVE-2012-0809 (Format string vulnerability in the sudo_debug function in Sudo 1.8.0 ...) - sudo 1.8.3p2-1 (bug #657985) [squeeze] - sudo <not-affected> (Vulnerable code not present) @@ -1748,6 +1764,11 @@ [squeeze] - sun-java6 <no-dsa> (Non-free not supported) CVE-2012-0507 RESERVED + - openjdk-6 <unfixed> + - openjdk-7 <unfixed> + - sun-java6 <removed> + [squeeze] - sun-java6 <no-dsa> (Non-free not supported) + TODO: check CVE-2012-0506 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...) - openjdk-6 6b24-1.11.1-1 - openjdk-7 7~u3-2.1-1 @@ -1891,6 +1912,8 @@ RESERVED CVE-2012-0453 RESERVED + - bugzilla <unfixed> + TODO: check CVE-2012-0452 (Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, ...) - icedove <not-affected> (Introduced in Thunderbird 10) - iceweasel 10.0.1-1