[Secure-testing-commits] r30992 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Dec 28 01:28:59 UTC 2014
Author: jmm
Date: 2014-12-28 01:28:59 +0000 (Sun, 28 Dec 2014)
New Revision: 30992
Modified:
data/CVE/list
Log:
no-dsa: amd64-microcode, jgit
another glibc srcpkg name fix
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-27 21:11:41 UTC (rev 30991)
+++ data/CVE/list 2014-12-28 01:28:59 UTC (rev 30992)
@@ -487,6 +487,7 @@
- git 1:2.1.4-1
- libgit2 <unfixed>
- jgit <unfixed>
+ [wheezy] - jgit <no-dsa> (Minor issue)
- mercurial 3.1.2-2 (bug #773640)
[wheezy] - mercurial <no-dsa> (Minor issue)
[squeeze] - mercurial <no-dsa> (Minor issue)
@@ -542,6 +543,7 @@
{DLA-122-1}
- glibc <unfixed>
- eglibc <removed>
+ [jessie] - eglibc <not-affected> (eglibc replaced by glibc in jessie, workaround for #769128)
[wheezy] - eglibc <no-dsa> (Will be fixed through a point update)
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=17630
CVE-2014-XXXX [freetype: out of bounds write]
@@ -26102,6 +26104,7 @@
NOT-FOR-US: Elastix
CVE-2013-6885 (The microcode on AMD 16h 00h through 0Fh processors does not properly ...)
- amd64-microcode <unfixed>
+ [wheezy] - amd64-microcode <no-dsa> (Non-free not supported)
NOTE: Workaround in Linux via https://git.kernel.org/cgit/linux/kernel/git/tip/tip.git/commit/?id=3b56496865f9f7d9bcb2f93b44c63f274f08e3b6 (v3.14-rc1)
NOTE: http://www.openwall.com/lists/oss-security/2013/11/28/1
CVE-2013-6857
More information about the Secure-testing-commits
mailing list