[Secure-testing-commits] r24601 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 6 05:30:18 UTC 2013
Author: carnil
Date: 2013-12-06 05:30:18 +0000 (Fri, 06 Dec 2013)
New Revision: 24601
Modified:
data/CVE/list
Log:
Add phantomjs for CVE-2013-4549; thanks sarnold
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-05 21:49:44 UTC (rev 24600)
+++ data/CVE/list 2013-12-06 05:30:18 UTC (rev 24601)
@@ -6160,9 +6160,9 @@
CVE-2013-4549 [XML Entity Expansion Denial of Service]
RESERVED
- qtbase-opensource-src 5.1.1+dfsg-6
- - qt4-x11 <undetermined>
+ - qt4-x11 <unfixed>
+ - phantomjs <unfixed>
NOTE: https://codereview.qt-project.org/#change,70708
- TODO: check qt4-x11
CVE-2013-4548 (The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH ...)
- openssh 1:6.4p1-1 (bug #729029)
[wheezy] - openssh <not-affected> (AES-GCM support introduced in 6.2)
More information about the Secure-testing-commits
mailing list