[Secure-testing-commits] r24368 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 21 06:58:15 UTC 2013
Author: carnil
Date: 2013-11-21 06:58:15 +0000 (Thu, 21 Nov 2013)
New Revision: 24368
Modified:
data/CVE/list
Log:
Add entry for CVE-2013-6800/krb5 (part of external check)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-21 06:50:14 UTC (rev 24367)
+++ data/CVE/list 2013-11-21 06:58:15 UTC (rev 24368)
@@ -13,7 +13,12 @@
CVE-2013-6801 (Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote ...)
NOT-FOR-US: Microsoft
CVE-2013-6800 (An unspecified third-party database module for the Key Distribution ...)
- TODO: check
+ - krb5 <unfixed> (low)
+ [squeeze] - krb5 <no-dsa> (Minor issue)
+ [wheezy] - krb5 <no-dsa> (Minor issue)
+ NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7757
+ NOTE: https://github.com/krb5/krb5/commit/5d2d9a1abe46a2c1a8614d4672d08d9d30a5f8bf
+ NOTE: Same commit as for the fix for CVE-2013-1418
CVE-2013-6799 (Apple Mac OS X 10.9 allows local users to cause a denial of service ...)
NOT-FOR-US: Apple Mac OS X
CVE-2013-6798 (BlackBerry Link before 1.2.1.31 on Windows and before 1.1.1 build 39 ...)
More information about the Secure-testing-commits
mailing list