[Secure-testing-commits] r30844 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Dec 19 08:00:42 UTC 2014
Author: jmm
Date: 2014-12-19 08:00:41 +0000 (Fri, 19 Dec 2014)
New Revision: 30844
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
add more affected source packages for git issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-19 07:26:00 UTC (rev 30843)
+++ data/CVE/list 2014-12-19 08:00:41 UTC (rev 30844)
@@ -10,6 +10,9 @@
TODO: check
CVE-2014-9390 [arbitrary command execution vulnerability on case-insensitive file systems]
- git <unfixed>
+ - libgit2 <unfixed>
+ - jgit <unfixed>
+ - mercurial <unfixed>
CVE-2014-9376
- ettercap 1:0.8.1-3 (bug #773416)
CVE-2014-9377
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-12-19 07:26:00 UTC (rev 30843)
+++ data/dsa-needed.txt 2014-12-19 08:00:41 UTC (rev 30844)
@@ -22,6 +22,8 @@
--
firebird2.5
--
+git
+--
jasper (carnil)
--
libav
@@ -34,6 +36,8 @@
--
mantis
--
+mercurial
+--
openswan (corsac)
NOTE: regression fix needed for CVE-2013-2053 (#743332) and CVE-2013-6466
(#744717)
More information about the Secure-testing-commits
mailing list