[Secure-testing-commits] r30611 - data/CVE
Yves-Alexis Perez
corsac at moszumanska.debian.org
Tue Dec 9 14:11:41 UTC 2014
Author: corsac
Date: 2014-12-09 14:08:59 +0000 (Tue, 09 Dec 2014)
New Revision: 30611
Modified:
data/CVE/list
Log:
add two rpm CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-09 09:45:03 UTC (rev 30610)
+++ data/CVE/list 2014-12-09 14:08:59 UTC (rev 30611)
@@ -3665,8 +3665,9 @@
RESERVED
CVE-2014-8119
RESERVED
-CVE-2014-8118
- RESERVED
+CVE-2014-8118 [integer overflow in CPIO header parsing]
+ - rpm <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1168715
CVE-2014-8117
RESERVED
CVE-2014-8116
@@ -26463,7 +26464,9 @@
- libvirt 1.2.0-1
[squeeze] - libvirt <not-affected> (vulnerable code not present, introduced in 1.1)
[wheezy] - libvirt <not-affected> (vulnerable code not present, introduced in 1.1)
-CVE-2013-6435
+CVE-2013-6435 [rpm race condition in the installation process]
+ - rpm <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1039811
RESERVED
CVE-2013-6434 (The remote-viewer in Red Hat Enterprise Virtualization Manager ...)
NOT-FOR-US: RHEV Manager
More information about the Secure-testing-commits
mailing list