Author: jmm Date: 2012-05-04 13:56:48 +0000 (Fri, 04 May 2012) New Revision: 19143 Modified: data/CVE/list data/spu-candidates.txt Log: csound fixed, no-dsa Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-04 13:53:57 UTC (rev 19142) +++ data/CVE/list 2012-05-04 13:56:48 UTC (rev 19143) @@ -855,16 +855,16 @@ NOT-FOR-US: wordpress buddypress plugin CVE-2012-2108 RESERVED - - csound <unfixed> (bug #661197) - TODO: check if they were actually fixed + - csound 1:5.17.6~dfsg-1 (low; bug #661197) + [squeeze] - csound <no-dsa> (Minor issue) CVE-2012-2107 RESERVED - - csound <unfixed> (bug #661197) - TODO: check if they were actually fixed + - csound 1:5.17.6~dfsg-1 (bug #661197) + [squeeze] - csound <no-dsa> (Minor issue) CVE-2012-2106 RESERVED - - csound <unfixed> (bug #661197) - TODO: check if they were actually fixed + - csound 1:5.17.6~dfsg-1 (bug #661197) + [squeeze] - csound <no-dsa> (Minor issue) CVE-2012-2105 RESERVED NOT-FOR-US: tsheetx @@ -5459,7 +5459,8 @@ RESERVED CVE-2012-0270 [csound buffer overflows] RESERVED - - csound 1:5.16.6~dfsg-1 (bug #661197) + - csound 1:5.16.6~dfsg-1 (low; bug #661197) + [squeeze] - csound <no-dsa> (Minor issue) NOTE: http://secunia.com/secunia_research/2012-3/ NOTE: http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=7d617a9551fb6c552ba16874b71266fcd90f3a6f CVE-2012-0269 (Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 ...) Modified: data/spu-candidates.txt ==================================================================--- data/spu-candidates.txt 2012-05-04 13:53:57 UTC (rev 19142) +++ data/spu-candidates.txt 2012-05-04 13:56:48 UTC (rev 19143) @@ -61,7 +61,15 @@ cifs-utils (CVE-2012-1586) #665923 +-- +csound (CVE-2012-0270, CVE-2012-2108, CVE-2012-2107, CVE-2012-2106) +http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commit;h=61d1df45ca9a52bab62892a3c3a13c41e6384505 (CVE-2012-2108) +http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=61d1df45ca9a52bab62892a3c3a13c41e6384505#patch2 +http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=blobdiff;f=util/pv_import.c;h=4766dbff22510675a444dd242d432292893949c9;hp=811fccf0a04ec39964710fae509b601fdc330852;hb=7d617a9551fb6c552ba16874b71266fcd90f3a6f;hpb=5fbf93d9f6dc21b9e4e085b26b724ba73c2f1c01 +http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=61d1df45ca9a52bab62892a3c3a13c41e6384505#patch3 +http://csound.git.sourceforge.net/git/gitweb.cgi?p=csound/csound5.git;a=commitdiff;h=7d617a9551fb6c552ba16874b71266fcd90f3a6f + -- dokuwiki (CVE-2012-2129)