[Secure-testing-commits] r24596 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 5 18:27:23 UTC 2013
Author: carnil
Date: 2013-12-05 18:27:23 +0000 (Thu, 05 Dec 2013)
New Revision: 24596
Modified:
data/CVE/list
Log:
Add CVE-2013-4549 entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-05 16:33:37 UTC (rev 24595)
+++ data/CVE/list 2013-12-05 18:27:23 UTC (rev 24596)
@@ -6157,8 +6157,12 @@
[squeeze] - bip <no-dsa> (Minor issue)
NOTE: Upstream commit: https://projects.duckcorp.org/projects/bip/repository/revisions/df45c4c2d6f892e3e1dec23ce0ed2575b53a7d8c
NOTE: https://projects.duckcorp.org/issues/261
-CVE-2013-4549
+CVE-2013-4549 [XML Entity Expansion Denial of Service]
RESERVED
+ - qtbase-opensource-src 5.1.1+dfsg-6
+ - qt4-x11 <undetermined>
+ NOTE: https://codereview.qt-project.org/#change,70708
+ TODO: check qt4-x11
CVE-2013-4548 (The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH ...)
- openssh 1:6.4p1-1 (bug #729029)
[wheezy] - openssh <not-affected> (AES-GCM support introduced in 6.2)
More information about the Secure-testing-commits
mailing list