[Secure-testing-commits] r25126 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Jan 9 14:19:53 UTC 2014
Author: jmm
Date: 2014-01-09 14:19:52 +0000 (Thu, 09 Jan 2014)
New Revision: 25126
Modified:
data/CVE/list
Log:
bug filed for graphviz
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-09 14:17:18 UTC (rev 25125)
+++ data/CVE/list 2014-01-09 14:19:52 UTC (rev 25126)
@@ -1,9 +1,7 @@
CVE-2014-1236 [buffer overflow]
- - graphviz <unfixed>
- TODO: check
+ - graphviz <unfixed> (bug #734745)
CVE-2014-1235
- - graphviz <unfixed>
- TODO: check
+ - graphviz <unfixed> (bug #734745)
CVE-2014-1234
NOT-FOR-US: Paratrooper Newrelic Ruby Gem
CVE-2014-1233
@@ -16,7 +14,7 @@
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=857303
[wheezy] - lightdm-gtk-greeter <not-affected> (in Wheezy, lightdm restarts when the greeter crashes, so there's no DoS)
CVE-2014-0978 [stack-based buffer overflow in yyerror()]
- - graphviz 2.26.3-16 (bug #729273)
+ - graphviz <unfixed> (bug #734745)
NOTE: https://github.com/ellson/graphviz/commit/7aaddf52cd98589fb0c3ab72a393f8411838438a
CVE-2014-0977 [XSS]
- movabletype-opensource 5.2.9+dfsg-1 (bug #734304)
More information about the Secure-testing-commits
mailing list