[Secure-testing-commits] r22210 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Thu May 9 08:17:19 UTC 2013


Author: carnil
Date: 2013-05-09 08:17:19 +0000 (Thu, 09 May 2013)
New Revision: 22210

Modified:
   data/CVE/list
Log:
bug filled for nfs-utils

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-09 07:05:10 UTC (rev 22209)
+++ data/CVE/list	2013-05-09 08:17:19 UTC (rev 22210)
@@ -3588,12 +3588,11 @@
 CVE-2013-1924
 	RESERVED
 	NOT-FOR-US: Commerce Skrill Drupal module
-CVE-2013-1923
+CVE-2013-1923 [rpc.gssd is vulnerable to DNS spoofing]
 	RESERVED
-	- nfs-utils <unfixed> (low)
+	- nfs-utils <unfixed> (low; bug #707401)
 	[squeeze] - nfs-utils <no-dsa> (Minor issue)
 	[wheezy] - nfs-utils <no-dsa> (Minor issue)
-	TODO: file bug
 CVE-2013-1922 [qemu-nbd format-guessing due to missing format specification]
 	RESERVED
 	- xen <not-affected> (qemu-nbd-xen built, but not installed into the binary packages)




More information about the Secure-testing-commits mailing list