[Secure-testing-commits] r30993 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Dec 28 01:33:41 UTC 2014
Author: jmm
Date: 2014-12-28 01:33:40 +0000 (Sun, 28 Dec 2014)
New Revision: 30993
Modified:
data/CVE/list
Log:
filed bug for libgit2
fixup clamav entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-28 01:28:59 UTC (rev 30992)
+++ data/CVE/list 2014-12-28 01:33:40 UTC (rev 30993)
@@ -485,7 +485,7 @@
CVE-2014-9390 [arbitrary command execution vulnerability on case-insensitive file systems]
RESERVED
- git 1:2.1.4-1
- - libgit2 <unfixed>
+ - libgit2 <unfixed> (bug #774048)
- jgit <unfixed>
[wheezy] - jgit <no-dsa> (Minor issue)
- mercurial 3.1.2-2 (bug #773640)
@@ -1587,6 +1587,7 @@
CVE-2014-9050 (Heap-based buffer overflow in the cli_scanpe function in ...)
{DLA-95-1}
- clamav 0.98.5+dfsg-1 (bug #770985)
+ [wheezy] - clamav <no-dsa> (clamav is updated through stable-updates)
NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11155
NOTE: Upstream commit: https://github.com/vrtadmin/clamav-devel/commit/fc3794a54d2affe5770c1f876484a871c783e91e
CVE-2014-9039 (wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x ...)
@@ -27042,6 +27043,7 @@
CVE-2013-6497 (clamscan in ClamAV before 0.98.5, when using -a option, allows remote ...)
{DLA-95-1}
- clamav 0.98.5+dfsg-1
+ [wheezy] - clamav <no-dsa> (clamav is updated through stable-updates)
NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11088
CVE-2013-6496 (Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive ...)
NOT-FOR-US: Red Hat Conga
More information about the Secure-testing-commits
mailing list