[Secure-testing-commits] r22152 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri May 3 13:28:49 UTC 2013
Author: jmm
Date: 2013-05-03 13:28:49 +0000 (Fri, 03 May 2013)
New Revision: 22152
Modified:
data/CVE/list
Log:
squid fixed
one linux kernel issue not affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-03 11:26:40 UTC (rev 22151)
+++ data/CVE/list 2013-05-03 13:28:49 UTC (rev 22152)
@@ -196,8 +196,8 @@
- linux-2.6 <not-affected> (net/nfc/llcp/sock.c not present, introduced in 3.3)
- linux <not-affected> (net/nfc/llcp/sock.c not present, introduced in 3.3)
CVE-2013-3232 (The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel ...)
- - linux-2.6 <removed> (low)
- - linux <unfixed> (low)
+ - linux-2.6 <not-affected> (Introduced and fixed during 3.9 cycle)
+ - linux <not-affected> (Introduced and fixed during 3.9 cycle)
CVE-2013-3231 (The llc_ui_recvmsg function in net/llc/af_llc.c in the Linux kernel ...)
- linux-2.6 <removed> (low)
- linux <unfixed> (low)
@@ -65007,7 +65007,7 @@
NOT-FOR-US: Qbik WinGate
CVE-2009-0801 (Squid, when transparent interception mode is enabled, uses the HTTP ...)
- squid <unfixed> (unimportant; bug #521053)
- - squid3 <unfixed> (unimportant; bug #521052)
+ - squid3 3.3.3-1 (unimportant; bug #521052)
NOTE: This only affects HTTP connections and only in transparent mode
NOTE: Also, same origin validations in the browsers still apply and keep this mostly harmless
NOTE: http://marc.info/?l=squid-dev&m=123542836103750&w=4
More information about the Secure-testing-commits
mailing list