Author: jmm Date: 2012-04-02 10:55:23 +0000 (Mon, 02 Apr 2012) New Revision: 18809 Modified: data/CVE/list Log: new chromium and libv8 issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-04-02 10:02:17 UTC (rev 18808) +++ data/CVE/list 2012-04-02 10:55:23 UTC (rev 18809) @@ -1586,11 +1586,9 @@ CVE-2012-1186 RESERVED - imagemagick 8:6.6.9.7-7 (bug #665007) - - imagemagick 8:6.7.4.0-3 (bug #665007) CVE-2012-1185 RESERVED - imagemagick 8:6.6.9.7-7 (bug #665007) - - imagemagick 8:6.7.4.0-3 (bug #665007) CVE-2012-1184 [Asterisk: Stack Buffer Overflow in HTTP Manager] RESERVED - asterisk 1:1.8.10.0~dfsg-1 (bug #664411) @@ -10438,22 +10436,30 @@ RESERVED CVE-2011-3065 RESERVED + - chromium-browser <unfixed> CVE-2011-3064 RESERVED + - chromium-browser <unfixed> CVE-2011-3063 RESERVED + - chromium-browser <unfixed> CVE-2011-3062 RESERVED + - chromium-browser <unfixed> CVE-2011-3061 RESERVED + - chromium-browser <unfixed> CVE-2011-3060 RESERVED + - chromium-browser <unfixed> CVE-2011-3059 RESERVED + - chromium-browser <unfixed> CVE-2011-3058 RESERVED + - chromium-browser <unfixed> CVE-2011-3057 (Google V8, as used in Google Chrome before 17.0.963.83, allows remote ...) - TODO: check + - libv8 <unfixed> CVE-2011-3056 (Google Chrome before 17.0.963.83 allows remote attackers to bypass the ...) - chromium-browser 17.0.963.83~r127885-1 CVE-2011-3055 (The browser native UI in Google Chrome before 17.0.963.83 does not ...) @@ -11053,7 +11059,7 @@ NOT-FOR-US: Citrix Access Gateway CVE-2011-2881 (Google Chrome before 14.0.835.202 does not properly handle Google V8 ...) - chromium-browser <not-affected> (chromium uses libv8 system copy) - - libv8 <undetermined> + - libv8 <unfixed> CVE-2011-2880 (Use-after-free vulnerability in Google Chrome before 14.0.835.202 ...) - chromium-browser 14.0.835.202~r103287-1 [squeeze] - chromium-browser <not-affected>