[Secure-testing-commits] r31034 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Dec 30 00:26:04 UTC 2014
Author: jmm
Date: 2014-12-30 00:26:04 +0000 (Tue, 30 Dec 2014)
New Revision: 31034
Modified:
data/CVE/list
Log:
mpfr, horizon no-dsa
remove lighttpd, solely relies on openssl; if disabled there it's fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-30 00:09:31 UTC (rev 31033)
+++ data/CVE/list 2014-12-30 00:26:04 UTC (rev 31034)
@@ -987,7 +987,9 @@
CVE-2014-9173 (SQL injection vulnerability in view.php in the Google Doc Embedder ...)
NOT-FOR-US: Google Doc Embedder plugin for WordPress
CVE-2014-XXXX [buffer overflow in mpfr_strtofr]
- - mpfr4 3.1.2-2 (bug #772008)
+ - mpfr4 3.1.2-2 (low; bug #772008)
+ [squeeze] - mpfr4 <no-dsa> (Minor issue)
+ [wheezy] - mpfr4 <no-dsa> (Minor issue)
NOTE: https://gforge.inria.fr/scm/viewvc.php?view=rev&root=mpfr&revision=9243
CVE-2015-0360
RESERVED
@@ -4485,6 +4487,7 @@
RESERVED
CVE-2014-8124 (OpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before ...)
- horizon 2014.1.3-6 (bug #772710)
+ [wheezy] - horizon <no-dsa> (Minor issue)
- python-django-openstack-auth 1.1.6-5 (bug #772712)
NOTE: up to 2014.1.3 and 2014.2 version up to 2014.2.1
CVE-2014-8122
@@ -15387,7 +15390,6 @@
[squeeze] - icedove <end-of-life>
- iceweasel 31.2.0esr-2
[squeeze] - iceweasel <end-of-life>
- - lighttpd 1.4.35-4 (bug #765702)
- matrixssl <removed> (low)
[squeeze] - matrixssl <no-dsa> (Minor issue)
[wheezy] - matrixssl <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list