[Secure-testing-commits] r25692 - data/CVE
Arne Wichmann
aw-guest at moszumanska.debian.org
Tue Feb 11 21:37:09 UTC 2014
Author: aw-guest
Date: 2014-02-11 21:37:09 +0000 (Tue, 11 Feb 2014)
New Revision: 25692
Modified:
data/CVE/list
Log:
CVE-2013-2065 - fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-11 21:14:12 UTC (rev 25691)
+++ data/CVE/list 2014-02-11 21:37:09 UTC (rev 25692)
@@ -17490,8 +17490,9 @@
{DSA-2674-1}
- libxv 2:1.0.7-1+deb7u1
CVE-2013-2065 ((1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 ...)
- - ruby1.9.1 <unfixed>
+ - ruby1.9.1 1.9.3.484-2
- ruby1.8 <not-affected> (Only affects 1.9 and 2.x)
+ NOTE: I checked 1.9.3.484-2, but https://www.ruby-lang.org/en/news/2013/05/14/taint-bypass-dl-fiddle-cve-2013-2065/ says it should be closed since 1.9.3 patchlevel 426
CVE-2013-2064 (Integer overflow in X.org libxcb 1.9 and earlier allows X servers to ...)
{DSA-2686-1}
- libxcb 1.8.1-2+deb7u1
More information about the Secure-testing-commits
mailing list