[Secure-testing-commits] r28317 - data/CVE

Joey Hess joeyh at moszumanska.debian.org
Sat Aug 16 21:14:11 UTC 2014


Author: joeyh
Date: 2014-08-16 21:14:11 +0000 (Sat, 16 Aug 2014)
New Revision: 28317

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-16 14:59:31 UTC (rev 28316)
+++ data/CVE/list	2014-08-16 21:14:11 UTC (rev 28317)
@@ -33,8 +33,10 @@
 	- libgcrypt20 1.6.0-2
 	NOTE: http://lists.gnupg.org/pipermail/gnupg-announce/2014q3/000352.html
 CVE-2014-5267 [ code change to reject any XRDS document with a /<!DOCTYPE/i match]
+	{DSA-2999-1}
 	- drupal7 7.31-1
 CVE-2014-5266 [XML entity expansion attack related to xmlrpc.php]
+	{DSA-3001-1 DSA-2999-1}
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
 	- drupal7 7.31-1




More information about the Secure-testing-commits mailing list