[Secure-testing-commits] r30891 - data/CVE

Michael Gilbert mgilbert at moszumanska.debian.org
Sun Dec 21 20:33:22 UTC 2014


Author: mgilbert
Date: 2014-12-21 20:33:22 +0000 (Sun, 21 Dec 2014)
New Revision: 30891

Modified:
   data/CVE/list
Log:
libv8 maintainers want it to be supported...

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-12-21 16:53:44 UTC (rev 30890)
+++ data/CVE/list	2014-12-21 20:33:22 UTC (rev 30891)
@@ -4602,7 +4602,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
+	- libv8-3.14 <unfixed> (bug #773671)
 	- chromium-browser <undetermined>
 	[squeeze] - chromium-browser <end-of-life>
 	TODO: CVE description indicates upsteam 38.0.2125.101 fixed this, but there isn't enough information available to check yet
@@ -16013,8 +16013,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 	- chromium-browser 38.0.2125.101-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2014-3198 (The Instance::HandleInputEvent function in pdf/instance.cc in the ...)
@@ -16029,8 +16028,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 	- chromium-browser 38.0.2125.101-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2014-3194 (Use-after-free vulnerability in the Web Workers implementation in ...)
@@ -16057,8 +16055,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-3187 (Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS ...)
 	- chromium-browser <not-affected> (only affects versions supporting Apple's facetime)
 CVE-2014-3186 (Buffer overflow in the picolcd_raw_event function in ...)
@@ -16210,8 +16207,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-3151
 	RESERVED
 CVE-2014-3150
@@ -20065,8 +20061,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1735 (Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, ...)
 	{DSA-2920-1}
 	- chromium-browser 34.0.1847.132-1
@@ -20074,8 +20069,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1734 (Multiple unspecified vulnerabilities in Google Chrome before ...)
 	{DSA-2920-1}
 	- chromium-browser 34.0.1847.132-1
@@ -20099,8 +20093,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1729 (Multiple unspecified vulnerabilities in Google V8 before 3.24.35.22, ...)
 	{DSA-2905-1}
 	- chromium-browser 34.0.1847.116-1
@@ -20108,8 +20101,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1728 (Multiple unspecified vulnerabilities in Google Chrome before ...)
 	{DSA-2905-1}
 	- chromium-browser 34.0.1847.116-1
@@ -20165,8 +20157,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1716 (Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype ...)
 	{DSA-2905-1}
 	- chromium-browser 34.0.1847.116-1
@@ -20174,8 +20165,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1715 (Directory traversal vulnerability in Google Chrome before ...)
 	{DSA-2883-1}
 	- chromium-browser 33.0.1750.152-1
@@ -20207,8 +20197,7 @@
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	- libv8 <removed>
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1704 (Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, ...)
 	{DSA-2883-1}
 	- chromium-browser 33.0.1750.152-1
@@ -20216,8 +20205,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2014-1703 (Use-after-free vulnerability in the ...)
 	{DSA-2883-1}
 	- chromium-browser 33.0.1750.152-1
@@ -26104,8 +26092,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-6667 (Multiple unspecified vulnerabilities in Google Chrome before ...)
 	{DSA-2883-1}
 	- chromium-browser 33.0.1750.152-1
@@ -26175,8 +26162,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-6649 (Use-after-free vulnerability in the RenderSVGImage::paint function in ...)
 	{DSA-2862-1}
 	- chromium-browser 32.0.1700.123-1
@@ -26184,8 +26170,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-6648
 	RESERVED
 CVE-2013-6647
@@ -26233,7 +26218,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
+	- libv8-3.14 <unfixed> (bug #773671)
 	- chromium-browser 31.0.1650.63-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2013-6637 (Multiple unspecified vulnerabilities in Google Chrome before ...)
@@ -35824,8 +35809,7 @@
 	- libv8 <unfixed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-2918 (Use-after-free vulnerability in the ...)
 	{DSA-2785-1}
 	- chromium-browser 30.0.1599.101-1
@@ -35979,8 +35963,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-2881 (Google Chrome before 28.0.1500.95 does not properly handle frames, ...)
 	{DSA-2732-1}
 	- chromium-browser 28.0.1500.95-1
@@ -36152,8 +36135,7 @@
 	- libv8 <removed>
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-2837 (Use-after-free vulnerability in the SVG implementation in Google ...)
 	{DSA-2695-1}
 	- chromium-browser 27.0.1453.93-1
@@ -36601,8 +36583,7 @@
 	- libv8 <removed>
 	[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)
 	[wheezy] - libv8 <no-dsa> (Minor issue, Chromium in Wheezy uses its own fixed copy)
-	- libv8-3.14 <unfixed> (unimportant)
-	NOTE: libv8 not covered by security support
+	- libv8-3.14 <unfixed> (bug #773671)
 CVE-2013-2631
 	RESERVED
 CVE-2013-2630 (Cross-site scripting (XSS) vulnerability in CA Service Desk Manager ...)




More information about the Secure-testing-commits mailing list