[Secure-testing-commits] r23727 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Sep 19 06:08:40 UTC 2013
Author: jmm
Date: 2013-09-19 06:08:40 +0000 (Thu, 19 Sep 2013)
New Revision: 23727
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
filed bug for hplip, DSA needed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-19 05:54:50 UTC (rev 23726)
+++ data/CVE/list 2013-09-19 06:08:40 UTC (rev 23727)
@@ -3072,7 +3072,7 @@
CVE-2013-4363
RESERVED
- rubygems <unfixed> (unimportant; bug #722361)
- [squeeze] - libgems-ruby <removed> (unimportant; bug #722361)
+ - libgems-ruby <removed> (unimportant; bug #722361)
NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
NOTE: it a potential elevated CPU consumption doesn't add any extra harm
NOTE: CVE for incomplete fix for CVE-2013-4287
@@ -3200,7 +3200,7 @@
- rtkit <unfixed> (bug #723714)
CVE-2013-4325 [use of insecure polkit DBUS API]
RESERVED
- - hplip <unfixed>
+ - hplip <unfixed> (bug #723716)
CVE-2013-4324 [Insecure calling of polkit via polkit_unix_process_new()]
RESERVED
- spice-gtk <unfixed>
@@ -12039,8 +12039,10 @@
RESERVED
CVE-2013-1066
RESERVED
+ NOT-FOR-US: language-selector
CVE-2013-1065
RESERVED
+ NOT-FOR-US: jockey
CVE-2013-1064
RESERVED
CVE-2013-1063
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2013-09-19 05:54:50 UTC (rev 23726)
+++ data/dsa-needed.txt 2013-09-19 06:08:40 UTC (rev 23727)
@@ -27,6 +27,8 @@
--
gnutls26/oldstable
--
+hplip
+--
icedtea-web
--
icedove (jmm)
More information about the Secure-testing-commits
mailing list