[Secure-testing-commits] r30598 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 8 18:39:26 UTC 2014
Author: carnil
Date: 2014-12-08 18:39:26 +0000 (Mon, 08 Dec 2014)
New Revision: 30598
Modified:
data/CVE/list
Log:
Add two new bind9 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-08 18:29:22 UTC (rev 30597)
+++ data/CVE/list 2014-12-08 18:39:26 UTC (rev 30598)
@@ -2159,8 +2159,10 @@
NOT-FOR-US: Go Git Service
CVE-2014-8681 (SQL injection vulnerability in the GetIssues function in ...)
NOT-FOR-US: Go Git Service
-CVE-2014-8680
+CVE-2014-8680 [Defects in GeoIP features can cause BIND to crash]
RESERVED
+ - bind9 <unfixed>
+ NOTE: https://kb.isc.org/article/AA-01217/0
CVE-2014-8679
RESERVED
CVE-2014-8678 (The ConfigSaveServlet servlet in ManageEngine OpUtils before build ...)
@@ -2687,8 +2689,10 @@
- binutils 2.24.90.20141104-1
- gdb <unfixed> (unimportant)
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7e1e19887abd24aeb15066b141cdff5541e0ec8e
-CVE-2014-8500
+CVE-2014-8500 [A Defect in Delegation Handling Can Be Exploited to Crash BIND]
RESERVED
+ - bind9 <unfixed>
+ NOTE: https://kb.isc.org/article/AA-01216/0
CVE-2014-8499 (Multiple SQL injection vulnerabilities in ManageEngine Password ...)
NOT-FOR-US: ManageEngine Password Manager Pro (PMP)
CVE-2014-8498 (SQL injection vulnerability in BulkEditSearchResult.cc in ManageEngine ...)
More information about the Secure-testing-commits
mailing list