[Secure-testing-commits] r25661 - data/CVE

Joey Hess joeyh at moszumanska.debian.org
Mon Feb 10 21:14:12 UTC 2014 

Author: joeyh
Date: 2014-02-10 21:14:11 +0000 (Mon, 10 Feb 2014)
New Revision: 25661

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-02-10 18:56:34 UTC (rev 25660)
+++ data/CVE/list	2014-02-10 21:14:11 UTC (rev 25661)
@@ -951,12 +951,14 @@
 CVE-2014-1492
 	RESERVED
 CVE-2014-1491 (Mozilla Network Security Services (NSS) before 3.15.4, as used in ...)
+	{DSA-2858-1}
 	- iceweasel <unfixed>
 	- icedove <unfixed>
 	- nss 2:3.15.4-1
 	[squeeze] - iceweasel <end-of-life>
 	[squeeze] - icedove <end-of-life>
 CVE-2014-1490 (Race condition in libssl in Mozilla Network Security Services (NSS) ...)
+	{DSA-2858-1}
 	- iceweasel <unfixed>
 	- icedove <unfixed>
 	- nss 2:3.15.4-1
@@ -969,11 +971,13 @@
 	- iceweasel <not-affected> (Only affects Firefox 26)
 	- icedove <not-affected> (Only affects Firefox 26)
 CVE-2014-1487 (The Web workers implementation in Mozilla Firefox before 27.0, Firefox ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
 	[squeeze] - icedove <end-of-life>
 CVE-2014-1486 (Use-after-free vulnerability in the imgRequestProxy function in ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
@@ -988,11 +992,13 @@
 	- iceweasel <not-affected> (Only affects Firefox 26)
 	- icedove <not-affected> (Only affects Firefox 26)
 CVE-2014-1482 (RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
 	[squeeze] - icedove <end-of-life>
 CVE-2014-1481 (Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
@@ -1001,6 +1007,7 @@
 	- iceweasel <not-affected> (Only affects Firefox 26)
 	- icedove <not-affected> (Only affects Firefox 26)
 CVE-2014-1479 (The System Only Wrapper (SOW) implementation in Mozilla Firefox before ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
@@ -1009,6 +1016,7 @@
 	- iceweasel <not-affected> (Only affects Firefox 26)
 	- icedove <not-affected> (Only affects Firefox 26)
 CVE-2014-1477 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
+	{DSA-2858-1}
 	- iceweasel 24.3.0esr-1
 	- icedove <unfixed>
 	[squeeze] - iceweasel <end-of-life>
@@ -4824,6 +4832,7 @@
 	[wheezy] - chrony <no-dsa> (Minor issue)
 CVE-2014-0020
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2014-0019 (Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and ...)
@@ -5901,17 +5910,19 @@
 	- nova <unfixed>
 CVE-2013-6490
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6489
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6488
 	REJECTED
 CVE-2013-6487
 	RESERVED
-	{DSA-2852-1}
+	{DSA-2859-1 DSA-2852-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 	- libgadu 1:1.11.3-1
@@ -5920,22 +5931,27 @@
 	- pidgin <not-affected> (Windows-specific)
 CVE-2013-6485
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6484
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6483
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6482
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6481
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6480 (Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter ...)
@@ -5943,14 +5959,17 @@
 	NOTE: version prior to 0.12.3 don't include a DigitalOcean driver
 CVE-2013-6479
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6478
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6477
 	RESERVED
+	{DSA-2859-1}
 	- pidgin 2.10.8-1
 	[squeeze] - pidgin <end-of-life> (Update not feasible, updated packages are provided through backports)
 CVE-2013-6476

More information about the Secure-testing-commits mailing list