[Secure-testing-commits] r30872 - data/CVE

[security tracker role]

Author: sectracker
Date: 2014-12-20 21:10:15 +0000 (Sat, 20 Dec 2014)
New Revision: 30872

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-12-20 20:48:53 UTC (rev 30871)
+++ data/CVE/list	2014-12-20 21:10:15 UTC (rev 30872)
@@ -238,20 +238,24 @@
 	RESERVED
 CVE-2014-9296 [receive() missing return on error]
 	RESERVED
+	{DSA-3108-1}
 	- ntp <unfixed> (bug #773576)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2670 (not yet open)
 CVE-2014-9295 [Multiple buffer overflows via specially-crafted packets]
 	RESERVED
+	{DSA-3108-1}
 	- ntp <unfixed> (bug #773576)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2667 (not yet open)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2668 (not yet open)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2669 (not yet open)
 CVE-2014-9294 [ntp-keygen uses weak random number generator and seed when generating MD5 keys]
 	RESERVED
+	{DSA-3108-1}
 	- ntp <unfixed> (bug #773576)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2666 (not yet open)
 CVE-2014-9293 [automatic generation of weak default key in config_auth()]
 	RESERVED
+	{DSA-3108-1}
 	- ntp <unfixed> (bug #773576)
 	NOTE: http://bugs.ntp.org/show_bug.cgi?id=2665 (not yet open)
 CVE-2014-9292 (Server-side request forgery (SSRF) vulnerability in proxy.php in the ...)
@@ -3903,9 +3907,11 @@
 	RESERVED
 CVE-2014-8138 [heap overflow in jp2_decode()]
 	RESERVED
+	{DSA-3106-1}
 	- jasper <unfixed> (bug #773463)
 CVE-2014-8137 [double-free in in jas_iccattrval_destroy()]
 	RESERVED
+	{DSA-3106-1}
 	- jasper <unfixed> (bug #773463)
 CVE-2014-8136 [local denial of service in qemu/qemu_driver.c]
 	RESERVED
@@ -14808,6 +14814,7 @@
 	NOTE: https://issues.apache.org/bugzilla/show_bug.cgi?id=56924#c6
 CVE-2014-3580
 	RESERVED
+	{DSA-3107-1}
 	- subversion 1.8.10-5 (bug #773263)
 	NOTE: http://subversion.apache.org/security/CVE-2014-3580-advisory.txt
 CVE-2014-3579