[Secure-testing-commits] r25899 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 27 05:56:13 UTC 2014
Author: carnil
Date: 2014-02-27 05:56:13 +0000 (Thu, 27 Feb 2014)
New Revision: 25899
Modified:
data/CVE/list
Log:
2009 CVE assigned for gnutls26 issue for versions before 2.7.6
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-26 21:11:27 UTC (rev 25898)
+++ data/CVE/list 2014-02-27 05:56:13 UTC (rev 25899)
@@ -1,9 +1,3 @@
-CVE-2014-XXXX [gnutls: incorrect handling of V1 intermediate certificates]
- - gnutls26 <not-affected> (versions before 2.7.6)
- - gnutls28 <not-affected> (versions before 2.7.6)
- NOTE: Only affects version prior of 2.7.6, fix: https://gitorious.org/gnutls/gnutls/commit/c8dcbedd1fdc312f5b1a70fcfbc1afe235d800cd
- NOTE: and the issue has different root than CVE-2014-1959
- NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1069301
CVE-2013-XXXX [possible DoS in awk magic]
- file 1:5.17-0.1 (bug #703993)
NOTE: http://bugs.gw.com/view.php?id=164
@@ -3229,6 +3223,12 @@
RESERVED
CVE-2011-5269 (Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 ...)
NOT-FOR-US: ProjectForge
+CVE-2009-5138 [gnutls: incorrect handling of V1 intermediate certificates]
+ - gnutls26 <not-affected> (versions before 2.7.6)
+ - gnutls28 <not-affected> (versions before 2.7.6)
+ NOTE: Only affects version prior of 2.7.6, fix: https://gitorious.org/gnutls/gnutls/commit/c8dcbedd1fdc312f5b1a70fcfbc1afe235d800cd
+ NOTE: and the issue has different root than CVE-2014-1959
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1069301
CVE-2009-5137 (Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows ...)
NOT-FOR-US: CastRipper
CVE-2014-0611
More information about the Secure-testing-commits
mailing list