[Secure-testing-commits] r30897 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 22 05:27:24 UTC 2014
Author: carnil
Date: 2014-12-22 05:27:24 +0000 (Mon, 22 Dec 2014)
New Revision: 30897
Modified:
data/CVE/list
Log:
ntp fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-21 21:45:08 UTC (rev 30896)
+++ data/CVE/list 2014-12-22 05:27:24 UTC (rev 30897)
@@ -240,24 +240,24 @@
CVE-2014-9296 [receive() missing return on error]
RESERVED
{DSA-3108-1 DLA-116-1}
- - ntp <unfixed> (bug #773576)
+ - ntp 1:4.2.6.p5+dfsg-3.2 (bug #773576)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2670 (not yet open)
CVE-2014-9295 [Multiple buffer overflows via specially-crafted packets]
RESERVED
{DSA-3108-1 DLA-116-1}
- - ntp <unfixed> (bug #773576)
+ - ntp 1:4.2.6.p5+dfsg-3.2 (bug #773576)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2667 (not yet open)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2668 (not yet open)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2669 (not yet open)
CVE-2014-9294 [ntp-keygen uses weak random number generator and seed when generating MD5 keys]
RESERVED
{DSA-3108-1 DLA-116-1}
- - ntp <unfixed> (bug #773576)
+ - ntp 1:4.2.6.p5+dfsg-3.2 (bug #773576)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2666 (not yet open)
CVE-2014-9293 [automatic generation of weak default key in config_auth()]
RESERVED
{DSA-3108-1 DLA-116-1}
- - ntp <unfixed> (bug #773576)
+ - ntp 1:4.2.6.p5+dfsg-3.2 (bug #773576)
NOTE: http://bugs.ntp.org/show_bug.cgi?id=2665 (not yet open)
CVE-2014-9292 (Server-side request forgery (SSRF) vulnerability in proxy.php in the ...)
NOT-FOR-US: jRSS WordPress Plugin
More information about the Secure-testing-commits
mailing list