[Secure-testing-commits] r30854 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Dec 20 05:43:27 UTC 2014
Author: carnil
Date: 2014-12-20 05:43:27 +0000 (Sat, 20 Dec 2014)
New Revision: 30854
Modified:
data/CVE/list
Log:
Add bug reference for ntp issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-20 05:43:20 UTC (rev 30853)
+++ data/CVE/list 2014-12-20 05:43:27 UTC (rev 30854)
@@ -238,22 +238,22 @@
RESERVED
CVE-2014-9296 [receive() missing return on error]
RESERVED
- - ntp <unfixed>
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2670
+ - ntp <unfixed> (bug #773576)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2670 (not yet open)
CVE-2014-9295 [Multiple buffer overflows via specially-crafted packets]
RESERVED
- - ntp <unfixed>
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2667
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2668
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2669
+ - ntp <unfixed> (bug #773576)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2667 (not yet open)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2668 (not yet open)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2669 (not yet open)
CVE-2014-9294 [ntp-keygen uses weak random number generator and seed when generating MD5 keys]
RESERVED
- - ntp <unfixed>
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2666
+ - ntp <unfixed> (bug #773576)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2666 (not yet open)
CVE-2014-9293 [automatic generation of weak default key in config_auth()]
RESERVED
- - ntp <unfixed>
- NOTE: http://bugs.ntp.org/show_bug.cgi?id=2665
+ - ntp <unfixed> (bug #773576)
+ NOTE: http://bugs.ntp.org/show_bug.cgi?id=2665 (not yet open)
CVE-2014-9292 (Server-side request forgery (SSRF) vulnerability in proxy.php in the ...)
NOT-FOR-US: jRSS WordPress Plugin
CVE-2014-9291
More information about the Secure-testing-commits
mailing list