[Secure-testing-commits] r23991 - data/CVE
Raphael Geissert
atomo64-guest at alioth.debian.org
Mon Oct 14 09:41:24 UTC 2013
Author: atomo64-guest
Date: 2013-10-14 09:41:24 +0000 (Mon, 14 Oct 2013)
New Revision: 23991
Modified:
data/CVE/list
Log:
nss issue, details still hidden behind the bug trackers
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-14 05:36:17 UTC (rev 23990)
+++ data/CVE/list 2013-10-14 09:41:24 UTC (rev 23991)
@@ -10860,8 +10860,12 @@
RESERVED
CVE-2013-1740
RESERVED
-CVE-2013-1739
+CVE-2013-1739 [nss "uninitialized data read in the event of a decryption failure"]
RESERVED
+ - nss <unfixed>
+ TODO: check
+ NOTE: https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.2_release_notes
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1012656
CVE-2013-1738 (Use-after-free vulnerability in the JS_GetGlobalForScopeChain function ...)
- iceweasel 24.0-1
[wheezy] - iceweasel <not-affected> (Only affects Firefox > 17)
More information about the Secure-testing-commits
mailing list