Author: joeyh
Date: 2013-06-16 21:14:24 +0000 (Sun, 16 Jun 2013)
New Revision: 22637
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-16 18:36:50 UTC (rev 22636)
+++ data/CVE/list 2013-06-16 21:14:24 UTC (rev 22637)
@@ -4368,7 +4368,7 @@
CVE-2012-6547 (The __tun_chr_ioctl function in drivers/net/tun.c in the Linux
kernel ...)
- linux 3.2.29-1 (low)
- linux-2.6 <removed> (low)
- [squeeze] - linux-2.6 2.6.32-47
+ [squeeze] - linux-2.6 2.6.32-47
CVE-2012-6546 (The ATM implementation in the Linux kernel before 3.6 does not
...)
{DSA-2668-1}
- linux 3.2.30-1 (low)
@@ -5360,6 +5360,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2013/06/11/5
CVE-2013-2178 [fail2ban remote denial of service]
RESERVED
+ {DSA-2708-1}
- fail2ban 0.8.10-1
CVE-2013-2177
RESERVED
@@ -31584,64 +31585,64 @@
- ffmpeg-debian <end-of-life>
CVE-2011-3972 (The shader translator implementation in Google Chrome before
...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3971 (Use-after-free vulnerability in Google Chrome before
17.0.963.46 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3970 (libxslt, as used in Google Chrome before 17.0.963.46, allows
remote ...)
- libxslt 1.1.26-11 (low; bug #660650)
[squeeze] - libxslt 1.1.26-6+squeeze1
CVE-2011-3969 (Use-after-free vulnerability in Google Chrome before
17.0.963.46 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3968 (Use-after-free vulnerability in Google Chrome before
17.0.963.46 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3967 (Unspecified vulnerability in Google Chrome before 17.0.963.46
allows ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3966 (Use-after-free vulnerability in Google Chrome before
17.0.963.46 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3965 (Google Chrome before 17.0.963.46 does not properly check
signatures, ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3964 (Google Chrome before 17.0.963.46 does not properly implement
the ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3963 (Google Chrome before 17.0.963.46 does not properly handle PDF
FAX ...)
- chromium-browser <not-affected> (Only affects proprietary Chrome)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3962 (Google Chrome before 17.0.963.46 does not properly perform path
...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3961 (Race condition in Google Chrome before 17.0.963.46 allows
remote ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3960 (Google Chrome before 17.0.963.46 does not properly decode audio
data, ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3959 (Buffer overflow in the locale implementation in Google Chrome
before ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3958 (Google Chrome before 17.0.963.46 does not properly perform
casts of ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3957 (Use-after-free vulnerability in the garbage-collection
functionality ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3956 (The extension implementation in Google Chrome before
17.0.963.46 does ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3955 (Google Chrome before 17.0.963.46 allows remote attackers to
cause a ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3954 (Google Chrome before 17.0.963.46 allows remote attackers to
cause a ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3953 (Google Chrome before 17.0.963.46 does not prevent monitoring of
the ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3952 (The decode_init function in kmvc.c in libavcodec in FFmpeg
before 0.10 ...)
{DSA-2494-1}
- libav 4:0.8.1-1
@@ -31706,39 +31707,39 @@
- ffmpeg <removed>
CVE-2011-3928 (Use-after-free vulnerability in Google Chrome before
16.0.912.77 ...)
- chromium-browser 16.0.912.77~r118311-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3927 (Skia, as used in Google Chrome before 16.0.912.77, does not
perform ...)
- chromium-browser 16.0.912.77~r118311-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3926 (Heap-based buffer overflow in the tree builder in Google Chrome
before ...)
- chromium-browser 16.0.912.77~r118311-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3925 (Use-after-free vulnerability in the Safe Browsing feature in
Google ...)
- chromium-browser 16.0.912.77~r118311-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3924 (Use-after-free vulnerability in Google Chrome before
16.0.912.77 ...)
- chromium-browser 16.0.912.77~r118311-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3923
RESERVED
CVE-2011-3922 (Stack-based buffer overflow in Google Chrome before 16.0.912.75
allows ...)
- chromium-browser 16.0.912.75~r116452-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3921 (Use-after-free vulnerability in Google Chrome before
16.0.912.75 ...)
- chromium-browser 16.0.912.75~r116452-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3920
RESERVED
CVE-2011-3919 (Heap-based buffer overflow in libxml2, as used in Google Chrome
before ...)
{DSA-2394-1}
- chromium-browser 16.0.912.75~r116452-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- libxml2 2.7.8.dfsg-7 (bug #656377)
CVE-2011-3918 (The Zygote process in Android 4.0.3 and earlier accepts fork
requests ...)
NOT-FOR-US: Android
CVE-2011-3917 (Stack-based buffer overflow in FileWatcher in Google Chrome
before ...)
- chromium-browser 16.0.912.63~r113337-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3916 (Google Chrome before 16.0.912.63 does not properly handle PDF
cross ...)
- chromium-browser <not-affected> (Chrome pdf plugin)
CVE-2011-3915 (Buffer overflow in Google Chrome before 16.0.912.63 allows
remote ...)
@@ -31746,7 +31747,7 @@
- webkit <not-affected> (Chrome pdf plugin)
CVE-2011-3914 (The internationalization (aka i18n) functionality in Google V8,
as ...)
- chromium-browser 16.0.912.63~r113337-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (v8-i18n chrome issue)
[squeeze] - chromium-browser <not-affected>
CVE-2011-3913 (Use-after-free vulnerability in Google Chrome before
16.0.912.63 ...)
@@ -34074,36 +34075,36 @@
- libv8 <not-affected> (Only affects >= 3.9, bug #687574)
CVE-2011-3114 (Multiple buffer overflows in the PDF functionality in Google
Chrome ...)
- chromium-browser <not-affected> (PDF functionality not built)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3113 (The PDF functionality in Google Chrome before 19.0.1084.52 does
not ...)
- chromium-browser <not-affected> (PDF functionality not built)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3112 (Use-after-free vulnerability in the PDF functionality in Google
Chrome ...)
- chromium-browser <not-affected> (PDF functionality specific to Chrome)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3111 (Google V8, as used in Google Chrome before 19.0.1084.52, allows
remote ...)
- libv8 3.8.9.20-2 (bug #687574)
CVE-2011-3110 (The PDF functionality in Google Chrome before 19.0.1084.52
allows ...)
- chromium-browser <not-affected> (PDF functionality not built)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3109 (Google Chrome before 19.0.1084.52 on Linux does not properly
perform a ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3108 (Use-after-free vulnerability in Google Chrome before
19.0.1084.52 ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3107 (Google Chrome before 19.0.1084.52 does not properly implement
...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3106 (The WebSockets implementation in Google Chrome before
19.0.1084.52 ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3105 (Use-after-free vulnerability in the Cascading Style Sheets
(CSS) ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3104 (Skia, as used in Google Chrome before 19.0.1084.52, allows
remote ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3103 (Google V8, as used in Google Chrome before 19.0.1084.52, does
not ...)
- libv8 <not-affected> (Only affects >= 3.9, bug #687574)
CVE-2011-3102 (Off-by-one error in libxml2, as used in Google Chrome before
...)
@@ -34111,117 +34112,117 @@
- libxml2 2.7.8.dfsg-9.1 (bug #674191)
NOTE:
http://git.gnome.org/browse/libxml2/commit/?id=d8e1faeaa99c7a7c07af01c1c72de352eb590a3e
CVE-2011-3101 (Google Chrome before 19.0.1084.46 on Linux does not properly
mitigate ...)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- chromium-browser 20.0.1132.21~r139451-1
CVE-2011-3100 (Google Chrome before 19.0.1084.46 does not properly draw dash
paths, ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3099 (Use-after-free vulnerability in the PDF functionality in Google
Chrome ...)
- chromium-browser <not-affected> (PDF viewer not included in Chromium)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3098 (Google Chrome before 19.0.1084.46 on Windows uses an incorrect
search ...)
- chromium-browser <not-affected> (Windows-specific)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3097 (The PDF functionality in Google Chrome before 19.0.1084.46
allows ...)
- chromium-browser <not-affected> (PDF functionality not built)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3096 (Use-after-free vulnerability in Google Chrome before
19.0.1084.46 on ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3095 (The OGG container in Google Chrome before 19.0.1084.46 allows
remote ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3094 (Google Chrome before 19.0.1084.46 does not properly handle
Tibetan ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3093 (Google Chrome before 19.0.1084.46 does not properly handle
glyphs, ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3092 (The regex implementation in Google V8, as used in Google Chrome
before ...)
- libv8 <not-affected> (Only affects >= 3.9, bug #687574)
CVE-2011-3091 (Use-after-free vulnerability in the IndexedDB implementation in
Google ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3089 (Use-after-free vulnerability in Google Chrome before
19.0.1084.46 ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3088 (Google Chrome before 19.0.1084.46 does not properly draw
hairlines, ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3087 (Google Chrome before 19.0.1084.46 does not properly perform
window ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3086 (Use-after-free vulnerability in Google Chrome before
19.0.1084.46 ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3085 (The Autofill feature in Google Chrome before 19.0.1084.46 does
not ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3084 (Google Chrome before 19.0.1084.46 does not use a dedicated
process for ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3083 (browser/profiles/profile_impl_io_data.cc in Google Chrome
before ...)
- chromium-browser 20.0.1132.21~r139451-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3082
RESERVED
CVE-2011-3081 (Use-after-free vulnerability in Google Chrome before
18.0.1025.168 ...)
- chromium-browser 18.0.1025.168~r134367-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3080 (Race condition in the Inter-process Communication (IPC)
implementation ...)
- chromium-browser 18.0.1025.168~r134367-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3079 (The Inter-process Communication (IPC) implementation in Google
Chrome ...)
- chromium-browser 18.0.1025.168~r134367-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3078 (Use-after-free vulnerability in Google Chrome before
18.0.1025.168 ...)
- chromium-browser 18.0.1025.168~r134367-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3077 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3076 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3075 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3074 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3073 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3072 (Google Chrome before 18.0.1025.151 allows remote attackers to
bypass ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3071 (Use-after-free vulnerability in the HTMLMediaElement
implementation in ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3070 (Use-after-free vulnerability in Google Chrome before
18.0.1025.151 ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3069 (Use-after-free vulnerability in the Cascading Style Sheets
(CSS) ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3068 (Use-after-free vulnerability in the Cascading Style Sheets
(CSS) ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3067 (Google Chrome before 18.0.1025.151 allows remote attackers to
bypass ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3066 (Skia, as used in Google Chrome before 18.0.1025.151, does not
properly ...)
- chromium-browser 18.0.1025.151~r130497-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3065 (Skia, as used in Google Chrome before 18.0.1025.142, allows
remote ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3064 (Use-after-free vulnerability in Google Chrome before
18.0.1025.142 ...)
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- chromium-browser 18.0.1025.142~r129054-1
CVE-2011-3063 (Google Chrome before 18.0.1025.142 does not properly validate
the ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3062 (Off-by-one error in the OpenType Sanitizer in Google Chrome
before ...)
- chromium-browser 18.0.1025.142~r129054-1
[squeeze] - chromium-browser <end-of-life>
@@ -34233,98 +34234,98 @@
[squeeze] - iceape <not-affected> (Vulnerable code not present)
CVE-2011-3061 (Google Chrome before 18.0.1025.142 does not properly check
X.509 ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3060 (Google Chrome before 18.0.1025.142 does not properly handle
text ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3059 (Google Chrome before 18.0.1025.142 does not properly handle SVG
text ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3058 (Google Chrome before 18.0.1025.142 does not properly handle the
EUC-JP ...)
- chromium-browser 18.0.1025.142~r129054-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3057 (Google V8, as used in Google Chrome before 17.0.963.83, allows
remote ...)
- libv8 3.8.9.20-1 (bug #687574)
NOTE: http://code.google.com/p/chromium/issues/detail?id=117794
NOTE: access restricted to chrome/libv8 bug log, so uncheckable
CVE-2011-3056 (Google Chrome before 17.0.963.83 allows remote attackers to
bypass the ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3055 (The browser native UI in Google Chrome before 17.0.963.83 does
not ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3054 (The WebUI privilege implementation in Google Chrome before
17.0.963.83 ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3053 (Use-after-free vulnerability in Google Chrome before
17.0.963.83 ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3052 (The WebGL implementation in Google Chrome before 17.0.963.83
does not ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3051 (Use-after-free vulnerability in the Cascading Style Sheets
(CSS) ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3050 (Use-after-free vulnerability in the Cascading Style Sheets
(CSS) ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3049 (Google Chrome before 17.0.963.83 does not properly restrict the
...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3048 (The png_set_text_2 function in pngset.c in libpng 1.0.x before
1.0.59, ...)
{DSA-2446-1}
- libpng 1.2.49-1 (bug #667475)
CVE-2011-3047 (The GPU process in Google Chrome before 17.0.963.79 allows
remote ...)
- chromium-browser 17.0.963.83~r127885-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3046 (The extension subsystem in Google Chrome before 17.0.963.78
does not ...)
- chromium-browser 17.0.963.78~r125577-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3045 (Integer signedness error in the png_inflate function in
pngrutil.c in ...)
{DSA-2439-1}
- libpng 1.2.47-2 (bug #665208; high)
CVE-2011-3044 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3043 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3042 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3041 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3040 (Google Chrome before 17.0.963.65 does not properly handle text,
which ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3039 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3038 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3037 (Google Chrome before 17.0.963.65 does not properly perform
casts of ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3036 (Google Chrome before 17.0.963.65 does not properly perform a
cast of ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3035 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3034 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3033 (Buffer overflow in Skia, as used in Google Chrome before
17.0.963.65, ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3032 (Use-after-free vulnerability in Google Chrome before
17.0.963.65 ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3031 (Use-after-free vulnerability in the element wrapper in Google
V8, as ...)
- chromium-browser 17.0.963.66~r124982-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3030
RESERVED
CVE-2011-3029
@@ -34333,40 +34334,40 @@
RESERVED
CVE-2011-3027 (Google Chrome before 17.0.963.56 does not properly perform a
cast of ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3026 (Integer overflow in libpng, as used in Google Chrome before ...)
{DSA-2410-1}
- libpng 1.2.46-5 (high; bug #660026)
CVE-2011-3025 (Google Chrome before 17.0.963.56 does not properly parse H.264
data, ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3024 (Google Chrome before 17.0.963.56 allows remote attackers to
cause a ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3023 (Use-after-free vulnerability in Google Chrome before
17.0.963.56 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3022 (translate/translate_manager.cc in Google Chrome before
17.0.963.56 and ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3021 (Use-after-free vulnerability in Google Chrome before
17.0.963.56 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3020 (Unspecified vulnerability in the Native Client validator ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3019 (Heap-based buffer overflow in Google Chrome before 17.0.963.56
allows ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3018 (Heap-based buffer overflow in Google Chrome before 17.0.963.56
allows ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3017 (Use-after-free vulnerability in Google Chrome before
17.0.963.56 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3016 (Use-after-free vulnerability in Google Chrome before
17.0.963.56 ...)
- chromium-browser 17.0.963.56~r121963-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-3015 (Multiple integer overflows in the PDF codecs in Google Chrome
before ...)
- chromium-browser <not-affected> (PDF functionality not built)
CVE-2011-3014 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x
through ...)
@@ -34885,7 +34886,7 @@
NOTE: http://trac.webkit.org/changeset/94508
CVE-2011-2876 (Use-after-free vulnerability in Google Chrome before
14.0.835.202 ...)
- chromium-browser 14.0.835.202~r103287-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/95600
CVE-2011-2875 (Google V8, as used in Google Chrome before 14.0.835.163, does
not ...)
- chromium-browser 14.0.835.163~r101024-1
@@ -34950,7 +34951,7 @@
- webkit <not-affected> (chromium specific)
CVE-2011-2857 (Use-after-free vulnerability in Google Chrome before
14.0.835.163 ...)
- chromium-browser 14.0.835.163~r101024-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/93514
CVE-2011-2856 (Google V8, as used in Google Chrome before 14.0.835.163, allows
remote ...)
- chromium-browser 14.0.835.163~r101024-1
@@ -34996,10 +34997,10 @@
NOTE: http://trac.webkit.org/changeset/93521
CVE-2011-2846 (Use-after-free vulnerability in Google Chrome before
14.0.835.163 ...)
- chromium-browser 14.0.835.163~r101024-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-2845 (Google Chrome before 15.0.874.102 does not properly handle
history ...)
- chromium-browser 15.0.874.106~r107270-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
CVE-2011-2844 (Google Chrome before 14.0.835.163 does not properly process MP3
files, ...)
- chromium-browser 14.0.835.163~r101024-1
[squeeze] - chromium-browser <not-affected>
@@ -35069,7 +35070,7 @@
NOTE: http://trac.webkit.org/r91738 http://trac.webkit.org/r91739
http://trac.webkit.org/changeset/92744
CVE-2011-2824 (Use-after-free vulnerability in Google Chrome before
13.0.782.215 ...)
- chromium-browser 13.0.782.215~r97094-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/92630
CVE-2011-2823 (Use-after-free vulnerability in Google Chrome before
13.0.782.215 ...)
- chromium-browser 13.0.782.215~r97094-1
@@ -35142,12 +35143,12 @@
CVE-2011-2800 (Google Chrome before 13.0.782.107 allows remote attackers to
obtain ...)
{DSA-2307-1}
- chromium-browser 13.0.782.107~r94237-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/91044
NOTE:
http://developer.apple.com/library/safari/#documentation/Tools/Conceptual/SafariExtensionGuide/MessagesandProxies/MessagesandProxies.html#//apple_ref/doc/uid/TP40009977-CH14-SW9
CVE-2011-2799 (Use-after-free vulnerability in Google Chrome before
13.0.782.107 ...)
- chromium-browser 13.0.782.107~r94237-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/90130
CVE-2011-2798 (Google Chrome before 13.0.782.107 does not properly restrict
access to ...)
- chromium-browser 13.0.782.107~r94237-1
@@ -35163,7 +35164,7 @@
- webkit <not-affected> (skia code)
CVE-2011-2795 (Google Chrome before 13.0.782.107 does not prevent calls to
functions ...)
- chromium-browser 13.0.782.107~r94237-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
NOTE: http://trac.webkit.org/changeset/89782
CVE-2011-2794 (Google Chrome before 13.0.782.107 does not properly perform
text ...)
- chromium-browser 13.0.782.107~r94237-1
@@ -36795,7 +36796,7 @@
[lenny] - dovecot <not-affected> (Vulnerable script not present)
CVE-2010-4805 (The socket implementation in net/core/sock.c in the Linux
kernel ...)
- linux-2.6 2.6.34-1
- [squeeze] - linux-2.6 2.6.32-48
+ [squeeze] - linux-2.6 2.6.32-48
CVE-2009-5077 (CRE Loaded before 6.2.14 allows remote attackers to bypass ...)
NOT-FOR-US: CRE Loaded
CVE-2009-5076 (CRE Loaded before 6.2.14, and possibly other versions before
6.3.x, ...)
@@ -36864,7 +36865,7 @@
NOT-FOR-US: Microsoft
CVE-2011-2332 (Google V8, as used in Google Chrome before 12.0.742.91, allows
remote ...)
- chromium-browser 12.0.742.91~r87961-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- libv8 3.4.14-1
NOTE: execScript removed in libv8 3.2 branch
CVE-2011-2194 (Integer overflow in the XSPF playlist parser in VideoLAN VLC
media ...)
@@ -39982,7 +39983,7 @@
- webkit <not-affected> (Chromium specific)
CVE-2011-1107 (Unspecified vulnerability in Google Chrome before 9.0.597.107
allows ...)
- chromium-browser 9.0.597.107~r75357-1
- [squeeze] - chromium-browser <end-of-life>
+ [squeeze] - chromium-browser <end-of-life>
- webkit <not-affected> (history controller code not present in 1.2)
NOTE: http://trac.webkit.org/changeset/76205
CVE-2011-1106 (Cross-site scripting (XSS) vulnerability in stcenter.nsf in the
server ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
