[Secure-testing-commits] r23816 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Sat Sep 28 09:14:27 UTC 2013
Author: joeyh
Date: 2013-09-28 09:14:27 +0000 (Sat, 28 Sep 2013)
New Revision: 23816
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-28 04:54:00 UTC (rev 23815)
+++ data/CVE/list 2013-09-28 09:14:27 UTC (rev 23816)
@@ -7076,6 +7076,7 @@
- linux <unfixed> (low)
- linux-2.6 <removed> (low)
CVE-2013-2892 (drivers/hid/hid-pl.c in the Human Interface Device (HID) subsystem in ...)
+ {DSA-2766-1}
- linux 3.10.11-1 (low)
- linux-2.6 <removed> (low)
CVE-2013-2891 (drivers/hid/hid-steelseries.c in the Human Interface Device (HID) ...)
@@ -7089,6 +7090,7 @@
- linux <unfixed> (low)
- linux-2.6 <removed> (low)
CVE-2013-2888 (Multiple array index errors in drivers/hid/hid-core.c in the Human ...)
+ {DSA-2766-1}
- linux 3.10.11-1
- linux-2.6 <removed>
CVE-2013-2887 (Multiple unspecified vulnerabilities in Google Chrome before ...)
@@ -7226,11 +7228,11 @@
- chromium-browser 28.0.1500.71-1
[squeeze] - chromium-browser <end-of-life>
CVE-2013-2852 (Format string vulnerability in the b43_request_firmware function in ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux 3.9.8-1 (low)
- linux-2.6 <removed> (low)
CVE-2013-2851 (Format string vulnerability in the register_disk function in ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux 3.9.8-1 (low)
- linux-2.6 <removed> (low)
CVE-2013-2850 (Heap-based buffer overflow in the iscsi_add_notunderstood_response ...)
@@ -8841,13 +8843,14 @@
- gallery3 <itp> (bug #511715)
CVE-2013-2239
RESERVED
+ {DSA-2766-1}
- linux-2.6 <removed> (low)
- linux <not-affected> (openvz flavour no longer included after Squeeze)
CVE-2013-2238 [buffer overflow]
RESERVED
- freeswitch <itp> (bug #389591)
CVE-2013-2237 (The key_notify_policy_flush function in net/key/af_key.c in the Linux ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux-2.6 <removed> (low)
- linux 3.9.4-1 (low)
NOTE: https://github.com/torvalds/linux/commit/85dfb745ee40232876663ae206cba35f24ab2a40
@@ -8858,7 +8861,7 @@
CVE-2013-2235
RESERVED
CVE-2013-2234 (The (1) key_notify_sa_flush and (2) key_notify_policy_flush functions ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux-2.6 <removed>
- linux 3.10.1-1
CVE-2013-2233 [not caching SSH host keys]
@@ -8866,7 +8869,7 @@
- ansible <unfixed> (bug #714822)
NOTE: https://github.com/ansible/ansible/issues/857
CVE-2013-2232 (The ip6_sk_dst_check function in net/ipv6/ip6_output.c in the Linux ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux-2.6 <removed>
- linux 3.10.1-1
CVE-2013-2231 [qemu-ga win32 service unquoted search path]
@@ -8965,6 +8968,7 @@
[squeeze] - eglibc <no-dsa> (Minor issue)
[wheezy] - eglibc <no-dsa> (Minor issue)
CVE-2013-2206 (The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c in ...)
+ {DSA-2766-1}
- linux-2.6 <removed>
- linux 3.9.4-1
[wheezy] - linux 3.2.46-1
@@ -9100,7 +9104,7 @@
CVE-2013-2165 (ResourceBuilderImpl.java in the RichFaces 3.x through 5.x ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full application server, #581226)
CVE-2013-2164 (The mmc_ioctl_cdrom_read_data function in drivers/cdrom/cdrom.c in the ...)
- {DSA-2745-1}
+ {DSA-2766-1 DSA-2745-1}
- linux-2.6 <removed> (low)
- linux 3.9.8-1 (low)
CVE-2013-2163 [monkey denial of service]
@@ -9175,6 +9179,7 @@
[squeeze] - libimobiledevice <no-dsa> (Minor issue)
[wheezy] - libimobiledevice <no-dsa> (Minor issue)
CVE-2013-2141 (The do_tkill function in kernel/signal.c in the Linux kernel before ...)
+ {DSA-2766-1}
- linux-2.6 <removed>
- linux 3.9.4-1
CVE-2013-2140 (The dispatch_discard_io function in ...)
More information about the Secure-testing-commits
mailing list