[Secure-testing-commits] r24493 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Nov 29 10:12:58 UTC 2013 

Author: jmm
Date: 2013-11-29 10:12:58 +0000 (Fri, 29 Nov 2013)
New Revision: 24493

Modified:
   data/CVE/list
Log:
adequate fixed
updates for ibus


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-11-29 09:57:17 UTC (rev 24492)
+++ data/CVE/list	2013-11-29 10:12:58 UTC (rev 24493)
@@ -1006,7 +1006,7 @@
 	NOTE: http://anonscm.debian.org/gitweb/?p=users/wouter/nbd.git;a=commitdiff;h=0e9bd98c44dd94d9ede92655a36849fbc8cbf5b9
 CVE-2013-6409 [privilege escalation via tty hijacking]
 	RESERVED
-	- adequate <unfixed> (bug #730691)
+	- adequate 0.8.1 (bug #730691)
 	NOTE: https://bitbucket.org/jwilk/adequate/commits/94e5fc5d810057bffb673501ed809f7c2dabd9ee
 CVE-2013-6408
 	RESERVED
@@ -5476,6 +5476,17 @@
 	NOTE: https://bugs.tryton.org/issue3446
 CVE-2013-4509 (The default configuration of IBUS 1.5.4, and possibly 1.5.2 and ...)
 	- ibus <unfixed> (low; bug #729065)
+	- mozc 1.12.1599.102-1 (low; bug #729065)
+	[wheezy] - mozc <not-affected> (Only in combination with Ibus 1.5.4, which is not in stable)
+	- ibus-anthy 1.5.4-1 (low; bug #729065)
+	[wheezy] - ibus-anthy <not-affected> (Only in combination with Ibus 1.5.4, which is not in stable)
+	[squeeze] - ibus-anthy <not-affected> (Only in combination with Ibus 1.5.4, which is not in oldstable)
+	- ibus-pinyin <unfixed> (low; bug #729065)
+	[wheezy] - ibus-pinyin <not-affected> (Only in combination with Ibus 1.5.4, which is not in stable)
+	[squeeze] - ibus-pinyin <not-affected> (Only in combination with Ibus 1.5.4, which is not in oldstable)
+	- ibus-chewing <unfixed> (low; bug #729065)
+	[wheezy] - ibus-chewing <not-affected> (Only in combination with Ibus 1.5.4, which is not in stable)
+	[squeeze] - ibus-chewing <not-affected> (Only in combination with Ibus 1.5.4, which is not in oldstable)
 	NOTE: http://www.openwall.com/lists/oss-security/2013/11/04/2
 	NOTE: This is rather a bug in the various IBus engines not in ibus itself, asked maintainers to investigate affected engines,
 	NOTE: can be assigned to affected engines once more info is available

More information about the Secure-testing-commits mailing list