[Secure-testing-commits] r24735 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Dec 13 14:02:38 UTC 2013
Author: jmm
Date: 2013-12-13 14:02:37 +0000 (Fri, 13 Dec 2013)
New Revision: 24735
Modified:
data/CVE/list
Log:
python no-dsa
one rails issue not in oldstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-13 08:46:23 UTC (rev 24734)
+++ data/CVE/list 2013-12-13 14:02:37 UTC (rev 24735)
@@ -255,13 +255,18 @@
- pam <unfixed> (bug #731368)
CVE-2013-7040
RESERVED
- - python2.5 <removed>
- - python2.6 <removed>
- - python2.7 <unfixed>
- - python3.1 <removed>
- - python3.2 <removed>
- - python3.3 <unfixed>
- TODO: check
+ - python2.5 <removed> (low)
+ - python2.6 <removed> (low)
+ - python2.7 <unfixed> (low)
+ - python3.1 <removed> (low)
+ - python3.2 <removed> (low)
+ - python3.3 <unfixed> (low)
+ [squeeze] - python2.5 <no-dsa> (Minor issue)
+ [squeeze] - python2.6 <no-dsa> (Minor issue)
+ [wheezy] - python2.6 <no-dsa> (Minor issue)
+ [wheezy] - python2.7 <no-dsa> (Minor issue)
+ [squeeze] - python3.1 <no-dsa> (Minor issue)
+ [wheezy] - python3.2 <no-dsa> (Minor issue)
CVE-2013-7039 [stack overflow in MHD_digest_auth_check()]
RESERVED
- libmicrohttpd 0.9.32-1 (low; bug #731933)
@@ -2354,7 +2359,7 @@
- rails-4.0 4.0.2+dfsg-1 (bug #731290)
- ruby-actionpack-3.2 3.2.16-1 (bug #731288)
- ruby-actionpack-2.3 <not-affected> (vulnerable code not present)
- - rails 2.3.14.1
+ - rails <not-affected> (vulnerable code not present)
NOTE: Starting with 2.3.14.1 rails is a transition package
CVE-2013-6413 [unrealircd: DoS, use after free]
RESERVED
More information about the Secure-testing-commits
mailing list