[Secure-testing-commits] r25615 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 8 17:22:55 UTC 2014
Author: carnil
Date: 2014-02-08 17:22:55 +0000 (Sat, 08 Feb 2014)
New Revision: 25615
Modified:
data/CVE/list
data/DSA/list
Log:
Add cross references for DSA, add missing CVE for DSA-2856-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-08 16:17:40 UTC (rev 25614)
+++ data/CVE/list 2014-02-08 17:22:55 UTC (rev 25615)
@@ -2757,7 +2757,7 @@
- libav <unfixed>
[wheezy] - libav <not-affected> (Introduced in 0.9 with d77f4afa9814b0433be6fdbfd7d8a113592ba680)
- ffmpeg <not-affected> (Introduced in 0.9 with d77f4afa9814b0433be6fdbfd7d8a113592ba680)
- NOTE: Pending for 9.12
+ NOTE: Pending for 9.12
NOTE: Fix in ffmpeg: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=9929991da7b843e7d80154fcacc4e80579b86a2d
NOTE: Fix in libav: http://git.libav.org/?p=libav.git;a=commit;h=82b9799bb211ecd117171115e4a8b832c4942314
CVE-2012-6616 (The mov_text_decode_frame function in libavcodec/movtextdec.c in ...)
@@ -4719,6 +4719,7 @@
RESERVED
CVE-2014-0050
RESERVED
+ {DSA-2856-1}
- libcommons-fileupload-java 1.3.1-1
- tomcat7 <undetermined>
- tomcat6 <not-affected> (access to Manager application limited to authenticated administrators)
@@ -6098,8 +6099,10 @@
NOTE: fixed by https://git.kernel.org/linus/ae7b4e1f213aa659aedf9c6ecad0bf5f0476e1e2
CVE-2013-6430
RESERVED
+ {DSA-2857-1}
- libspring-java 3.0.6.RELEASE-11 (bug #735420)
CVE-2013-6429 (The SourceHttpMessageConverter in Spring MVC in Spring Framework ...)
+ {DSA-2857-1}
- libspring-java 3.0.6.RELEASE-11 (bug #735420)
CVE-2013-6428 (The ReST API in OpenStack Orchestration API (Heat) before Havana ...)
- heat 2013.2.1-1 (bug #732033)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2014-02-08 16:17:40 UTC (rev 25614)
+++ data/DSA/list 2014-02-08 17:22:55 UTC (rev 25615)
@@ -2,6 +2,7 @@
{CVE-2013-6429 CVE-2013-6430}
[wheezy] - libspring-java 3.0.6.RELEASE-6+deb7u2
[07 Feb 2014] DSA-2856-1 libcommons-fileupload-java - CVE-2014-0050
+ {CVE-2014-0050}
[squeeze] - libcommons-fileupload-java 1.2.2-1+deb6u2
[wheezy] - libcommons-fileupload-java 1.2.2-1+deb7u2
[05 Feb 2014] DSA-2855-1 libav - several
More information about the Secure-testing-commits
mailing list