[Secure-testing-commits] r22901 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-07-10 18:04:13 +0000 (Wed, 10 Jul 2013)
New Revision: 22901

Modified:
   data/CVE/list
   data/dsa-needed.txt
Log:
openstack updates, thanks zigo and jcristau


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-10 13:09:16 UTC (rev 22900)
+++ data/CVE/list	2013-07-10 18:04:13 UTC (rev 22901)
@@ -6003,7 +6003,8 @@
 	[squeeze] - mysql-5.1 <no-dsa> (Minor issue, can be included in a future DSA)
 CVE-2013-2161 [Unchecked user input in Swift XML responses]
 	RESERVED
-	- swift <unfixed> (bug #712202)
+	- swift <unfixed> (low; bug #712202)
+	[wheezy] - swift <no-dsa> (Minor issue)
 CVE-2013-2160
 	RESERVED
 	NOT-FOR-US: Apache CXF
@@ -6223,6 +6224,7 @@
 CVE-2013-2104 [Missing expiration check in Keystone PKI tokens validation]
 	RESERVED
 	- keystone <unfixed>
+	[wheezy] - keystone <not-affected> (PKI token support not yet present)
 	- python-keystoneclient 1:0.2.5-1
 	[wheezy] - python-keystoneclient <not-affected> (vulnerable code not present)
 	NOTE: Keystone Folsom fix: https://review.openstack.org/#/c/30743/
@@ -6270,7 +6272,8 @@
 	NOT-FOR-US: zPanel
 CVE-2013-2096 [fails to verify image virtual size]
 	RESERVED
-	- nova <unfixed> (bug #710157)
+	- nova <unfixed> (low; bug #710157)
+	[wheezy] - nova <no-dsa> (Minor issue)
 CVE-2013-2095
 	RESERVED
 CVE-2013-2094 (The perf_swevent_init function in kernel/events/core.c in the Linux ...)

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2013-07-10 13:09:16 UTC (rev 22900)
+++ data/dsa-needed.txt	2013-07-10 18:04:13 UTC (rev 22901)
@@ -31,6 +31,8 @@
 jquery/oldstable
   Maintainer prepared an update
 --
+keystone
+--
 libav (ffmpeg in oldstable)
 --
 libwpd/oldstable only