[Secure-testing-commits] r22602 - data/CVE
Yves-Alexis Perez
corsac at alioth.debian.org
Fri Jun 14 10:38:01 UTC 2013
Author: corsac
Date: 2013-06-14 10:38:01 +0000 (Fri, 14 Jun 2013)
New Revision: 22602
Modified:
data/CVE/list
Log:
add CVEs from oss-sec and reorder CVE-2013-2179 (and add glibc precision)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-14 09:14:24 UTC (rev 22601)
+++ data/CVE/list 2013-06-14 10:38:01 UTC (rev 22602)
@@ -1024,10 +1024,6 @@
RESERVED
CVE-2013-4091
RESERVED
-CVE-2013-2179 [xdm: NULL ptr deref]
- RESERVED
- - xdm <not-affected> (Not affected when PAM is used)
- NOTE: http://www.openwall.com/lists/oss-security/2013/06/11/5
CVE-2013-4090
RESERVED
CVE-2013-4089
@@ -5317,11 +5313,19 @@
RESERVED
CVE-2013-2180
RESERVED
+ NOT-FOR-US: uk-cookie Wordpress plugin, not in Debian
+CVE-2013-2179 [possible NULL ptr deref in XDM when using crypt() from glibc 2.17+]
+ RESERVED
+ - xdm <not-affected> (Not affected when PAM is used)
+ [squeeze] - xdm <not-affected> (same as above and glibc too old)
+ [wheezy] - xdm <not-affected> (same as above and glibc too old)
+ NOTE: http://www.openwall.com/lists/oss-security/2013/06/11/5
CVE-2013-2178 [fail2ban remote denial of service]
RESERVED
- fail2ban 0.8.10-1
CVE-2013-2177
RESERVED
+ NOT-FOR-US: third party drupal module (Display Suite)
CVE-2013-2176
RESERVED
CVE-2013-2175
More information about the Secure-testing-commits
mailing list