[Secure-testing-commits] r23305 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue Aug 13 05:42:32 UTC 2013
Author: carnil
Date: 2013-08-13 05:42:32 +0000 (Tue, 13 Aug 2013)
New Revision: 23305
Modified:
data/CVE/list
Log:
CVE-2013-4238 for python
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-13 05:28:27 UTC (rev 23304)
+++ data/CVE/list 2013-08-13 05:42:32 UTC (rev 23305)
@@ -1871,8 +1871,16 @@
[squeeze] - libvirt <not-affected> (Introduced in 1.1.1)
NOTE: Introduced by: http://libvirt.org/git/?p=libvirt.git;a=commit;h=632180d1
NOTE: Fixed by: http://libvirt.org/git/?p=libvirt.git;a=commit;h=0e671a16
-CVE-2013-4238
+CVE-2013-4238 [Python SSL module does not handle certificates that contain hostnames with NULL bytes]
RESERVED
+ - python2.5 <removed>
+ - python2.6 <removed>
+ - python2.7 <unfixed>
+ - python3.1 <removed>
+ - python3.2 <unfixed>
+ - python3.3 <unfixed>
+ NOTE: http://bugs.python.org/issue18709
+ NOTE: https://bugs.mageia.org/show_bug.cgi?id=10989
CVE-2013-4237 [Buffer overwrite when using readdir_r on file systems returning file names longer than NAME_MAX characters]
RESERVED
- eglibc <unfixed> (bug #719558)
More information about the Secure-testing-commits
mailing list