[Secure-testing-commits] r23616 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Sep 11 05:28:09 UTC 2013
Author: jmm
Date: 2013-09-11 05:28:07 +0000 (Wed, 11 Sep 2013)
New Revision: 23616
Modified:
data/CVE/list
Log:
gems non-issue
another security issue in ITPd open-xchange
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-11 05:15:41 UTC (rev 23615)
+++ data/CVE/list 2013-09-11 05:28:07 UTC (rev 23616)
@@ -1144,6 +1144,7 @@
RESERVED
CVE-2013-5200
RESERVED
+ - open-xchange <itp> (bug #269329)
CVE-2013-5199
RESERVED
CVE-2013-5198
@@ -3174,9 +3175,10 @@
RESERVED
CVE-2013-4287 [Algorithmic complexity vulnerability]
RESERVED
- - rubygems <unfixed> (bug #722361)
- [wheezy] - rubygems <unfixed> (bug #722361)
- [squeeze] - libgems-ruby <removed> (bug #722361)
+ - rubygems <unfixed> (unimportant; bug #722361)
+ [squeeze] - libgems-ruby <removed> (unimportant; bug #722361)
+ NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
+ NOTE: it a potential elevated CPU consumption doesn't add any extra harm
CVE-2013-4286
RESERVED
CVE-2013-4285
More information about the Secure-testing-commits
mailing list