[Secure-testing-commits] r28110 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 6 08:37:55 UTC 2014
Author: carnil
Date: 2014-08-06 08:37:55 +0000 (Wed, 06 Aug 2014)
New Revision: 28110
Modified:
data/CVE/list
Log:
Update CVE-2014-3556/nginx
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-06 07:07:32 UTC (rev 28109)
+++ data/CVE/list 2014-08-06 08:37:55 UTC (rev 28110)
@@ -3736,8 +3736,10 @@
RESERVED
CVE-2014-3556 [SMTP STARTTLS plaintext injection flaw]
RESERVED
- - nginx <unfixed>
- TODO: check
+ - nginx <unfixed> (bug #757196)
+ [wheezy] - nginx <not-affected> (Affects 1.5.6 - 1.7.3)
+ [squeeze] - nginx <not-affected> (Affects 1.5.6 - 1.7.3)
+ NOTE: fixed in nginx 1.7.4, 1.6.1
CVE-2014-3555 (OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno ...)
- neutron 2014.1.1-3 (bug #755134)
CVE-2014-3554 [buffer overflow]
More information about the Secure-testing-commits
mailing list