[Secure-testing-commits] r22221 - data/CVE

Fri May 10 13:08:34 UTC 2013

Author: carnil
Date: 2013-05-10 13:08:34 +0000 (Fri, 10 May 2013)
New Revision: 22221

Modified:
   data/CVE/list
Log:
add version for nfs-utils for CVE-2013-1923, nfs-utils avoids dns reverse lookups (by default, but still alowing so)

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2013-05-10 08:55:01 UTC (rev 22220)
+++ data/CVE/list	2013-05-10 13:08:34 UTC (rev 22221)
@@ -3617,7 +3617,7 @@
 	NOT-FOR-US: Commerce Skrill Drupal module
 CVE-2013-1923 [rpc.gssd is vulnerable to DNS spoofing]
 	RESERVED
-	- nfs-utils <unfixed> (low; bug #707401)
+	- nfs-utils 1:1.2.8-1 (low; bug #707401)
 	[squeeze] - nfs-utils <no-dsa> (Minor issue)
 	[wheezy] - nfs-utils <no-dsa> (Minor issue)
 CVE-2013-1922 [qemu-nbd format-guessing due to missing format specification]


