[Secure-testing-commits] r22226 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri May 10 15:10:35 UTC 2013
Author: carnil
Date: 2013-05-10 15:10:35 +0000 (Fri, 10 May 2013)
New Revision: 22226
Modified:
data/CVE/list
Log:
haproxy: two CVE fixed with upload to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-10 14:56:51 UTC (rev 22225)
+++ data/CVE/list 2013-05-10 15:10:35 UTC (rev 22226)
@@ -3659,7 +3659,7 @@
CVE-2013-1913
RESERVED
CVE-2013-1912 (Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through ...)
- - haproxy <unfixed> (bug #704611)
+ - haproxy 1.4.23-1 (bug #704611)
NOTE: http://git.1wt.eu/web?p=haproxy-1.4.git;a=commitdiff;h=dc80672211
CVE-2013-1911 (lib/ldoce/word.rb in the ldoce 0.0.2 gem for Ruby allows remote ...)
NOT-FOR-US: ldoce ruby gem
@@ -17649,7 +17649,7 @@
CVE-2012-2943 (CRLF injection vulnerability in cryptographp.inc.php in Cryptographp ...)
NOT-FOR-US: Cryptographp
CVE-2012-2942 (Buffer overflow in the trash buffer in the header capture ...)
- - haproxy <unfixed> (bug #674447)
+ - haproxy 1.4.23-1 (bug #674447)
NOTE: According to upstream information this only was fixed in 1.4.21
NOTE: only a issue if using non-default value for global.tune.bufsize configuration option
NOTE: Reported as duplicate with CVE-2012-2391 http://seclists.org/oss-sec/2012/q2/417
More information about the Secure-testing-commits
mailing list