[Secure-testing-commits] r24138 - data/CVE
Michael Gilbert
mgilbert at alioth.debian.org
Thu Oct 24 03:55:26 UTC 2013
Author: mgilbert
Date: 2013-10-24 03:55:26 +0000 (Thu, 24 Oct 2013)
New Revision: 24138
Modified:
data/CVE/list
Log:
track openssl issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-23 20:36:21 UTC (rev 24137)
+++ data/CVE/list 2013-10-24 03:55:26 UTC (rev 24138)
@@ -20009,13 +20009,17 @@
{DSA-2627-1 DSA-2626-1 DSA-2579-1}
- iceweasel <not-affected> (Firefox ESV not use TLS/SSL compression)
- chromium-browser 22.0.1229.94~r161065-1
+ NOTE: Chromium fix: https://chromiumcodereview.appspot.com/10825183/
[squeeze] - chromium-browser <end-of-life>
- qt4-x11 4:4.8.2+dfsg-3
- apache2 2.2.22-12 (bug #689936)
- lighttpd 1.4.30-1 (bug #700399)
- nginx 1.2.1-2.2 (bug #700426)
[squeeze] - qt4-x11 <no-dsa> (Minor issue)
- NOTE: Chromium fix: https://chromiumcodereview.appspot.com/10825183/
+ - openssl <unfixed>
+ [wheezy] - openssl <no-dsa> (Minor issue)
+ [squeeze] - openssl <no-dsa> (Minor issue)
+ NOTE: openssl redhat announcement https://rhn.redhat.com/errata/RHSA-2013-0587.html
CVE-2012-4928 (Cross-site scripting (XSS) vulnerability in ow_updates/index.php in ...)
NOT-FOR-US: Oxwall 1.1.1
CVE-2012-4927 (SQL injection vulnerability in Limesurvey (a.k.a PHPSurveyor) before ...)
More information about the Secure-testing-commits
mailing list