[Secure-testing-commits] r20878 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Jan 10 09:25:00 UTC 2013
Author: jmm
Date: 2013-01-10 09:25:00 +0000 (Thu, 10 Jan 2013)
New Revision: 20878
Modified:
data/CVE/list
Log:
ca-certificates bug about whether we trust the TurkTrust root cert is not a vulnerability
fix rails entry, thanks carnil
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-10 07:42:09 UTC (rev 20877)
+++ data/CVE/list 2013-01-10 09:25:00 UTC (rev 20878)
@@ -264,7 +264,6 @@
{DSA-2599-1}
- nss 2:3.14.1.with.ckbi.1.93-1
[wheezy] - nss 2:3.13.6-2
- - ca-certificates <unfixed> (bug #697366)
NOTE: http://googleonlinesecurity.blogspot.in/2013/01/enhancing-digital-certificate-security.html
NOTE: https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/
CVE-2013-0742
@@ -1830,8 +1829,6 @@
RESERVED
{DSA-2604-1}
- rails 2.3.14.1 (bug #697722; high)
- - ruby-actionpack-3.2 <unfixed>
- - ruby-actionpack-2.3 <unfixed>
- ruby-activesupport-2.3 2.3.14-5 (bug #697789)
- ruby-activesupport-3.2 3.2.6-5 (bug #697790)
NOTE: Starting with 2.3.14.1 rails is a transition package
@@ -3826,6 +3823,7 @@
RESERVED
CVE-2012-5646
RESERVED
+ NOT-FOR-US: OpenShift
CVE-2012-5645
RESERVED
- freeciv <unfixed> (low; bug #696306)
More information about the Secure-testing-commits
mailing list