[Secure-testing-commits] r25060 - data/CVE

Mon Jan 6 06:14:35 UTC 2014

Author: jmm
Date: 2014-01-06 06:14:35 +0000 (Mon, 06 Jan 2014)
New Revision: 25060

Modified:
   data/CVE/list
Log:
remove unneeded unfixed annotation for wheezy, always implicitly unfixed
one kernel issue N/A for oldstable/stable
one wireshark issue N/A for oldstable


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2014-01-06 05:20:13 UTC (rev 25059)
+++ data/CVE/list	2014-01-06 06:14:35 UTC (rev 25060)
@@ -1252,6 +1252,7 @@
 CVE-2013-7113 (epan/dissectors/packet-bssgp.c in the BSSGP dissector in Wireshark ...)
 	{DSA-2825-1}
 	- wireshark 1.10.4-1
+	[squeeze] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2013-67.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9488
 CVE-2013-7112 (The dissect_sip_common function in epan/dissectors/packet-sip.c in the ...)
@@ -3677,8 +3678,9 @@
 	NOTE: Introduced by https://git.kernel.org/linus/6d0bfe22611602f36617bc7aa2ffa1bbb2f54c67
 	NOTE: fixed by https://git.kernel.org/linus/cf970c002d270c36202bd5b9c2804d3097a52da0
 CVE-2013-6431 (The fib6_add function in net/ipv6/ip6_fib.c in the Linux kernel before ...)
-	- linux-2.6 <removed> (low)
-	- linux <unfixed> (low)
+	- linux-2.6 <not-affected> (Vulnerable code not present)
+	- linux 3.11.5-1 (low)
+	[wheezy] - linux <not-affected> (Vulnerable code not present)
 	NOTE: fixed by https://git.kernel.org/linus/ae7b4e1f213aa659aedf9c6ecad0bf5f0476e1e2
 CVE-2013-6430
 	RESERVED
@@ -4100,7 +4102,6 @@
 	NOT-FOR-US: Financial Services module for SAP ERP Central Component
 CVE-2013-6283 (VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to ...)
 	- vlc 2.1.0-2
-	[wheezy] - vlc <unfixed> (medium)
 	NOTE: User-assisted DoS for X session (freezes window manager) in 2.0.3-5
 	NOTE: Potential code execution
 CVE-2013-6282 (The (1) get_user and (2) put_user API functions in the Linux kernel ...)


