[Secure-testing-commits] r30719 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Fri Dec 12 21:10:16 UTC 2014 

Author: sectracker
Date: 2014-12-12 21:10:16 +0000 (Fri, 12 Dec 2014)
New Revision: 30719

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-12-12 19:01:46 UTC (rev 30718)
+++ data/CVE/list	2014-12-12 21:10:16 UTC (rev 30719)
@@ -505,6 +505,7 @@
 	NOTE: Patch https://bugzilla.mindrot.org/show_bug.cgi?id=1867 from not applied in Debian
 CVE-2014-9277 [<cross-domain-policy> mangling allows injection in API format=php]
 	RESERVED
+	{DSA-3100-1}
 	- mediawiki <unfixed> (bug #772764)
 	[squeeze] - mediawiki <end-of-life>
 	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=71478
@@ -898,7 +899,7 @@
 	NOTE: http://github.com/mantisbt/mantisbt/commit/7bb78e4581ff1092c811ea96582fe602624cdcdd
 	NOTE: https://www.mantisbt.org/bugs/view.php?id=17811
 CVE-2014-9116 (The write_one_header function in mutt 1.5.23 does not properly handle ...)
-	{DSA-3083-1}
+	{DSA-3083-1 DLA-100-1}
 	- mutt 1.5.23-2 (bug #771125)
 	NOTE: Detailed analysis in https://bugzilla.redhat.com/show_bug.cgi?id=1168463#c4
 	NOTE: Upstream bugreport: http://dev.mutt.org/trac/ticket/3716
@@ -2460,7 +2461,7 @@
 CVE-2014-8603
 	RESERVED
 CVE-2014-8602 (iterator.c in NLnet Labs Unbound before 1.5.1 does not limit ...)
-	{DSA-3097-1}
+	{DSA-3097-1 DLA-107-1}
 	- unbound 1.4.22-3 (bug #772622)
 	NOTE: http://www.unbound.net/pipermail/unbound-users/2014-December/003662.html
 CVE-2014-8601 (PowerDNS Recursor before 3.6.2 does not limit delegation chaining, ...)
@@ -5726,13 +5727,13 @@
 CVE-2014-7276
 	RESERVED
 CVE-2014-7275 (The POP3-over-SSL implementation in getmail 4.0.0 through 4.44.0 does ...)
-	{DSA-3091-1}
+	{DSA-3091-1 DLA-106-1}
 	- getmail4 4.46.0-1 (bug #766670)
 CVE-2014-7274 (The IMAP-over-SSL implementation in getmail 4.44.0 does not verify ...)
-	{DSA-3091-1}
+	{DSA-3091-1 DLA-106-1}
 	- getmail4 4.46.0-1 (bug #766670)
 CVE-2014-7273 (The IMAP-over-SSL implementation in getmail 4.0.0 through 4.43.0 does ...)
-	{DSA-3091-1}
+	{DSA-3091-1 DLA-106-1}
 	- getmail4 4.44.0-1 (bug #766670)
 CVE-2014-7272 [multiple vulnerabilities in sddm]
 	RESERVED
@@ -23040,7 +23041,7 @@
 	[squeeze] - fusionforge <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: http://lists.fusionforge.org/pipermail/fusionforge-general/2014-March/002645.html
 CVE-2014-0467 (Buffer overflow in copy.c in Mutt before 1.5.23 allows remote ...)
-	{DSA-2874-1 DLA-100-1}
+	{DSA-2874-1}
 	- mutt 1.5.22-2 (bug #708731)
 CVE-2014-0466 (The fixps script in a2ps 4.14 does not use the -dSAFER option when ...)
 	{DSA-2892-1}

More information about the Secure-testing-commits mailing list