Author: jmm Date: 2012-05-03 14:44:56 +0000 (Thu, 03 May 2012) New Revision: 19125 Modified: data/CVE/list data/spu-candidates.txt Log: fix src pkg name of dhcpcd distutils info leak also applies to py26, but no-dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-03 11:04:38 UTC (rev 19124) +++ data/CVE/list 2012-05-03 14:44:56 UTC (rev 19125) @@ -721,7 +721,7 @@ RESERVED CVE-2012-2152 [dhcpcd 3.2.3 remote stack overflow / denial of service] RESERVED - - dhcpd <unfixed> (bug #671265) + - dhcpcd <unfixed> (bug #671265) NOTE: http://www.openwall.com/lists/oss-security/2012/05/02/4 CVE-2012-2151 [multiple XSS] RESERVED @@ -2086,6 +2086,7 @@ RESERVED CVE-2012-1587 RESERVED + NOTE: To be rejected CVE-2012-1585 RESERVED - nova 2012-1~rc3-1 (bug #666888) @@ -5691,6 +5692,8 @@ CVE-2011-4944 RESERVED - python2.7 2.7.3~rc2-2 (low; bug #650555) + - python2.6 <unfixed> + [squeeze] - python2.6 <no-dsa> (Minor issue) CVE-2011-4943 RESERVED CVE-2011-4942 Modified: data/spu-candidates.txt ==================================================================--- data/spu-candidates.txt 2012-05-03 11:04:38 UTC (rev 19124) +++ data/spu-candidates.txt 2012-05-03 14:44:56 UTC (rev 19125) @@ -308,6 +308,11 @@ #664135 http://www.openwall.com/lists/oss-security/2012/03/14/11 +CVE-2011-4944 +#650555 +http://bugs.python.org/file23824/pypirc-secure.diff + + -- pyro (CVE-2011-2765)