Author: jmm
Date: 2012-08-06 08:01:08 +0000 (Mon, 06 Aug 2012)
New Revision: 19892
Modified:
data/CVE/list
Log:
zabbix fixed
icedove fixed
eucalyptus reuploaded into the archive, update itp entry
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-08-05 21:14:20 UTC (rev 19891)
+++ data/CVE/list 2012-08-06 08:01:08 UTC (rev 19892)
@@ -1510,7 +1510,7 @@
- openttd <unfixed> (low; bug #683258)
CVE-2012-3435 [Zabbix SQL injection flaw]
RESERVED
- - zabbix <unfixed> (bug #683273)
+ - zabbix 1:2.0.2+dfsg-1 (bug #683273)
NOTE: http://seclists.org/oss-sec/2012/q3/127
CVE-2012-3434 [WordPress plugin Count Per Day XSS (SSCHADV2012-015)]
RESERVED
@@ -2049,9 +2049,9 @@
CVE-2012-3242
RESERVED
CVE-2012-3241 (The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2
does not ...)
- - eucalyptus <itp> (bug #680589)
+ - eucalyptus <not-affected> (Fixed before initial release)
CVE-2012-3240 (The Walrus service in Eucalyptus 2.0.3 and 3.0.x before 3.0.2
allows ...)
- - eucalyptus <itp> (bug #680589)
+ - eucalyptus <not-affected> (Fixed before initial release)
CVE-2012-3239
RESERVED
CVE-2012-3238 (Cross-site scripting (XSS) vulnerability in the Backup/Restore
...)
@@ -5166,7 +5166,7 @@
CVE-2012-1967 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before
10.0.6, ...)
{DSA-2514-1 DSA-2513-1}
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1966 (Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before
10.0.6 do ...)
{DSA-2514-1}
@@ -5175,59 +5175,59 @@
- iceweasel 10.0.6esr-1
CVE-2012-1964 (The certificate-warning functionality in ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1963 (The Content Security Policy (CSP) functionality in Mozilla
Firefox 4.x ...)
- iceweasel 10.0.6esr-1
[squeeze] - iceweasel <not-affected> (CSP not yet available)
- icedove 10.0.5-1
[squeeze] - icedove <not-affected> (CSP not yet available)
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1962 (Use-after-free vulnerability in the JSDependentString::undepend
...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1961 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before
10.0.6, ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1960 (The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS
...)
- iceweasel <not-affected> (Only affects Firefox > 10)
CVE-2012-1959 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before
10.0.6, ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1958 (Use-after-free vulnerability in the nsGlobalWindow::PageHidden
...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1957 (An unspecified parser-utility class in Mozilla Firefox 4.x
through ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1956
RESERVED
CVE-2012-1955 (Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before
10.0.6, ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1954 (Use-after-free vulnerability in the nsDocument::AdoptNode
function in ...)
{DSA-2514-1 DSA-2513-1}
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1953 (The ElementAnimations::EnsureStyleRuleFor function in Mozilla
Firefox ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1952 (The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x
through ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1951 (Use-after-free vulnerability in the
nsSMILTimeValueSpec::IsEventBased ...)
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1950 (The drag-and-drop implementation in Mozilla Firefox 4.x through
13.0 ...)
{DSA-2514-1}
@@ -5237,7 +5237,7 @@
CVE-2012-1948 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
{DSA-2514-1 DSA-2513-1}
- iceweasel 10.0.6esr-1
- - icedove <unfixed>
+ - icedove 10.0.6-1
- iceape 2.7.6-1
CVE-2012-1947 (Heap-based buffer overflow in the utf16_to_isolatin1 function in
...)
{DSA-2489-1 DSA-2488-1}