[Secure-testing-commits] r25723 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Feb 13 10:03:39 UTC 2014
Author: jmm
Date: 2014-02-13 10:03:39 +0000 (Thu, 13 Feb 2014)
New Revision: 25723
Modified:
data/CVE/list
Log:
bug filed for cinnamon
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-13 09:40:16 UTC (rev 25722)
+++ data/CVE/list 2014-02-13 10:03:39 UTC (rev 25723)
@@ -11,13 +11,11 @@
- xen <unfixed>
[squeeze] - xen <not-affected> (Xen 4.1 onwards affected)
CVE-2014-1949 [cinnamon-screensaver lock bypass]
- - cinnamon <unfixed>
- TODO: check
+ - cinnamon <unfixed> (bug #738828)
NOTE: http://www.openwall.com/lists/oss-security/2014/02/12/7
CVE-2014-1948 [Swift store backend password leak]
- glance <unfixed>
NOTE: https://launchpad.net/bugs/1275062
- TODO: check
CVE-2014-1947 [Buffer overflow vulnerability]
- imagemagick <unfixed>
NOTE: http://trac.imagemagick.org/changeset/13736
@@ -39,7 +37,7 @@
CVE-2014-1917
RESERVED
CVE-2014-1916 (The (1) opus_packet_get_nb_frames and (2) ...)
- TODO: check
+ NOT-FOR-US: MumbleKit / Mumble for iOS
CVE-2014-1915 (Multiple cross-site request forgery (CSRF) vulnerabilities in Command ...)
TODO: check
CVE-2014-1914 (Multiple cross-site scripting (XSS) vulnerabilities in Command School ...)
More information about the Secure-testing-commits
mailing list