[Secure-testing-commits] r31038 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Dec 30 02:02:53 UTC 2014
Author: jmm
Date: 2014-12-30 02:02:53 +0000 (Tue, 30 Dec 2014)
New Revision: 31038
Modified:
data/CVE/list
Log:
no-dsa: libapache-poi-java, elfutils, libsndfile
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-30 01:19:01 UTC (rev 31037)
+++ data/CVE/list 2014-12-30 02:02:53 UTC (rev 31038)
@@ -4,11 +4,15 @@
- linux-2.6 <not-affected> (Introduced in 3.13)
NOTE: http://thread.gmane.org/gmane.linux.network/343494
CVE-2014-XXXX [libsndfile: two buffer read overflows]
- - libsndfile <unfixed> (bug #774162)
+ - libsndfile <unfixed> (low; bug #774162)
+ [squeeze] - libsndfile <no-dsa> (Minor issue)
+ [wheezy] - libsndfile <no-dsa> (Minor issue)
CVE-2014-XXXX [a2p: buffer overflow]
- perl <unfixed> (bug #769606)
CVE-2014-XXXX [dir traversal]
- elfutils <unfixed>
+ [wheezy] - elfutils <no-dsa> (Minor issue)
+ [squeeze] - elfutils <no-dsa> (Minor issue)
NOTE: https://git.fedorahosted.org/cgit/elfutils.git/commit/?id=147018e729e7c22eeabf15b82d26e4bf68a0d18e
CVE-2014-XXXX [Buffer overflow]
- mpg123 1.18.0-1
@@ -15558,6 +15562,7 @@
NOT-FOR-US: PicketLink
CVE-2014-3529 (The OPC SAX setup in Apache POI before 3.10.1 allows remote attackers ...)
- libapache-poi-java 3.10.1-1
+ [wheezy] - libapache-poi-java <no-dsa> (Minor issue)
NOTE: https://issues.apache.org/bugzilla/show_bug.cgi?id=56164
CVE-2014-3527
RESERVED
More information about the Secure-testing-commits
mailing list