[Secure-testing-commits] r28249 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 13 04:50:04 UTC 2014
Author: carnil
Date: 2014-08-13 04:50:04 +0000 (Wed, 13 Aug 2014)
New Revision: 28249
Modified:
data/CVE/list
Log:
Add fixed version for subversion issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-13 04:48:44 UTC (rev 28248)
+++ data/CVE/list 2014-08-13 04:50:04 UTC (rev 28249)
@@ -51,7 +51,7 @@
[wheezy] - xcfa <no-dsa> (Minor issue)
CVE-2014-3528 [MD5 collision authentication leak]
RESERVED
- - subversion <unfixed> (low)
+ - subversion 1.8.10-1 (low)
[squeeze] - subversion <no-dsa> (Minor issue)
[wheezy] - subversion <no-dsa> (Minor issue)
NOTE: http://mail-archives.apache.org/mod_mbox/subversion-dev/201407.mbox/%3C53DAB4A7.8030004%40reser.org%3E
@@ -3928,7 +3928,7 @@
- apache2 <not-affected> (Affects only Windows systems)
CVE-2014-3522 [incorrect SSL certificate validation in Serf RA (repository access) layer]
RESERVED
- - subversion <unfixed>
+ - subversion 1.8.10-1
[wheezy] - subversion <unfixed> (unimportant)
[squeeze] - subversion <unfixed> (unimportant)
NOTE: https://subversion.apache.org/security/CVE-2014-3522-advisory.txt
More information about the Secure-testing-commits
mailing list