[Secure-testing-commits] r26600 - data/CVE
Joey Hess
joeyh at moszumanska.debian.org
Thu Apr 17 21:14:10 UTC 2014
Author: joeyh
Date: 2014-04-17 21:14:10 +0000 (Thu, 17 Apr 2014)
New Revision: 26600
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-17 20:16:38 UTC (rev 26599)
+++ data/CVE/list 2014-04-17 21:14:10 UTC (rev 26600)
@@ -3770,6 +3770,7 @@
CVE-2011-5270 (wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the ...)
- wordpress 3.2.1+dfsg-1
CVE-2010-5298 (Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL ...)
+ {DSA-2908-1}
- openssl <unfixed>
[squeeze] - openssl <not-affected> (Introduced in 1.0.0)
TODO: double check
@@ -7605,6 +7606,7 @@
NOTE: seems introduced in https://github.com/torvalds/linux/commit/8dd014adfea6f173c1ef6378f7e5e7924866c923
NOTE: qemu is built with support for vhost_net, module loaded post-wheezy when linux < 3.4 but root:root 0600
CVE-2014-0076 (The Montgomery ladder implementation in OpenSSL through 1.0.0l does ...)
+ {DSA-2908-1}
- openssl 1.0.1g-1 (low; bug #742923)
NOTE: http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=f9b6c0ba4c02497782f801e3c45688f3efaac55c
CVE-2014-0075
More information about the Secure-testing-commits
mailing list