[Secure-testing-commits] r23847 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Tue Oct 1 16:45:29 UTC 2013 

Author: carnil
Date: 2013-10-01 16:45:29 +0000 (Tue, 01 Oct 2013)
New Revision: 23847

Modified:
   data/CVE/list
Log:
CVE for systemd where assigned, add to data/CVE/list

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-10-01 15:12:00 UTC (rev 23846)
+++ data/CVE/list	2013-10-01 16:45:29 UTC (rev 23847)
@@ -1,16 +1,3 @@
-CVE-2013-XXXX [systemd: Integer overflow, leading to heap-based buffer overflow by processing native messages]
-	- systemd <unfixed>
-	[wheezy] - systemd <not-affected> (Vulnerable code not present)
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859051
-CVE-2013-XXXX [systemd: TOCTOU race condition when updating file permissions and SELinux security contexts]
-	- systemd <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859060
-CVE-2013-XXXX [systemd: Possibility of denial of logging service by processing native messages from file]
-	- systemd <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859104
-CVE-2013-XXXX [systemd: Improper sanitization of invalid XKB layouts descriptions]
-	- systemd <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=862324
 CVE-2013-5960 (The authenticated-encryption feature in the symmetric-encryption ...)
 	NOT-FOR-US: OWASP Enterprise Security API for Java
 CVE-2013-5958
@@ -3442,14 +3429,19 @@
 	RESERVED
 CVE-2013-4395
 	RESERVED
-CVE-2013-4394
-	RESERVED
-CVE-2013-4393
-	RESERVED
-CVE-2013-4392
-	RESERVED
-CVE-2013-4391
-	RESERVED
+CVE-2013-4394 [systemd: Improper sanitization of invalid XKB layouts descriptions]
+	- systemd <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=862324
+CVE-2013-4393 [systemd: Possibility of denial of logging service by processing native messages from file]
+	- systemd <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859104
+CVE-2013-4392 [systemd: TOCTOU race condition when updating file permissions and SELinux security contexts]
+	- systemd <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859060
+CVE-2013-4391 [systemd: Integer overflow, leading to heap-based buffer overflow by processing native messages]
+	- systemd <unfixed>
+	[wheezy] - systemd <not-affected> (Vulnerable code not present)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859051
 CVE-2013-4390
 	RESERVED
 CVE-2013-4389

More information about the Secure-testing-commits mailing list