[Secure-testing-commits] r23323 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Aug 15 05:55:40 UTC 2013
Author: jmm
Date: 2013-08-15 05:55:40 +0000 (Thu, 15 Aug 2013)
New Revision: 23323
Modified:
data/CVE/list
Log:
cifs kernel issue sid only
spice not in squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-15 05:46:20 UTC (rev 23322)
+++ data/CVE/list 2013-08-15 05:55:40 UTC (rev 23323)
@@ -20,8 +20,6 @@
- cakephp <not-affected> (AssetDispatcher not present in 1.3)
NOTE: http://bakery.cakephp.org/articles/markstory/2013/07/18/cakephp_2_3_8_2_2_9_released
NOTE: http://seclists.org/bugtraq/2013/Aug/97
-CVE-2013-XXXX [django ossible XSS via is_safe_url]
- - python-django 1.5.2-1
CVE-2013-5110
RESERVED
CVE-2013-5109
@@ -1896,11 +1894,9 @@
- php5 <unfixed> (bug #719765)
CVE-2013-4247 [linux: cifs: off-by-one bug in build_unc_path_to_root]
RESERVED
- - linux-2.6 <removed>
+ - linux-2.6 <not-affected> (Introduced in 3.8)
- linux <unfixed>
- NOTE: http://openwall.com/lists/oss-security/2013/08/14/8
- NOTE: Upstream fix https://git.kernel.org/linus/1fc29bacedeabb278080e31bb9c1ecb49f143c3b
- TODO: check
+ [wheezy] - linux <not-affected> (Introduced in 3.8)
CVE-2013-4246
RESERVED
CVE-2013-4245
@@ -2298,7 +2294,6 @@
RESERVED
- spice 0.12.4-0nocelt1 (low; bug #717030)
[wheezy] - spice <no-dsa> (Minor issue)
- [squeeze] - spice <no-dsa> (Minor issue)
CVE-2013-4129 (The bridge multicast implementation in the Linux kernel through 3.10.3 ...)
- linux <not-affected> (Introduced in 3.11-rc1)
- linux-2.6 <not-affected> (Introduced in 3.11-rc1)
More information about the Secure-testing-commits
mailing list