[Secure-testing-commits] r28375 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Aug 20 10:10:00 UTC 2014
Author: jmm
Date: 2014-08-20 10:09:59 +0000 (Wed, 20 Aug 2014)
New Revision: 28375
Modified:
data/CVE/list
Log:
openstack not affected
mcollective no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-20 09:57:29 UTC (rev 28374)
+++ data/CVE/list 2014-08-20 10:09:59 UTC (rev 28375)
@@ -3,6 +3,7 @@
NOTE: assignment not from Adobe, see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-5333
CVE-2014-5356 [Glance store DoS through disk space exhaustion]
- glance <unfixed>
+ [wheezy] - glance <not-affected> (Vulnerable code not present)
NOTE: Versions: up to 2013.2.3 and 2014.1 to 2014.1.2
CVE-2014-5336 [Denial of service]
- monkey <removed> (low)
@@ -4084,6 +4085,7 @@
CVE-2014-3594 [Persistent XSS in Horizon Host Aggregates interface]
RESERVED
- horizon <unfixed>
+ [wheezy] - horizon <not-affected> (Vulnerable code not present)
NOTE: up to 2013.2.3, and 2014.1 versions up to 2014.1.2
CVE-2014-3593
RESERVED
@@ -5043,10 +5045,10 @@
CVE-2014-3252
RESERVED
CVE-2014-3251 (The MCollective aes_security plugin, as used in Puppet Enterprise ...)
- - mcollective <unfixed>
+ - mcollective <unfixed> (low)
+ [wheezy] - mcollective <no-dsa> (Minor issue)
NOTE: Mcollective are not configured to use the plugin and are not vulnerable by default.
NOTE: http://puppetlabs.com/security/cve/cve-2014-3251
- TODO: check
CVE-2014-3250
RESERVED
- puppet <unfixed> (low)
More information about the Secure-testing-commits
mailing list