[Secure-testing-commits] r22981 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jul 17 14:34:30 UTC 2013
Author: jmm
Date: 2013-07-17 14:34:29 +0000 (Wed, 17 Jul 2013)
New Revision: 22981
Modified:
data/CVE/list
Log:
filed bug for eglibc, no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-07-17 14:29:21 UTC (rev 22980)
+++ data/CVE/list 2013-07-17 14:34:29 UTC (rev 22981)
@@ -124,8 +124,9 @@
RESERVED
CVE-2013-4788 [Eglibc PTR MANGLE bug]
RESERVED
- - eglibc <unfixed>
- TODO: check
+ - eglibc <unfixed> (low; bug #717178)
+ [squeeze] - eglibc <no-dsa> (Incorrect hardening, only applies to statically linked binaries)
+ [wheezy] - eglibc <no-dsa> (Incorrect hardening, only applies to statically linked binaries)
CVE-2013-4787 (Android 1.6 Donut through 4.2 Jelly Bean does not properly check ...)
TODO: check
CVE-2013-4786 (The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange ...)
More information about the Secure-testing-commits
mailing list