[Secure-testing-commits] r25445 - in data: . DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 31 16:13:54 UTC 2014
Author: carnil
Date: 2014-01-31 16:13:53 +0000 (Fri, 31 Jan 2014)
New Revision: 25445
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve a DSA number for libyaml
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2014-01-31 16:10:16 UTC (rev 25444)
+++ data/DSA/list 2014-01-31 16:13:53 UTC (rev 25445)
@@ -1,3 +1,7 @@
+[31 Jan 2014] DSA-2850-1 libyaml - heap-based buffer overflow
+ {CVE-2013-6393}
+ [squeeze] - libyaml 0.1.3-1+deb6u2
+ [wheezy] - libyaml 0.1.4-2+deb7u2
[31 Jan 2014] DSA-2849-1 curl - information disclosure
{CVE-2014-0015}
[squeeze] - curl 7.21.0-2.1+squeeze7
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-01-31 16:10:16 UTC (rev 25444)
+++ data/dsa-needed.txt 2014-01-31 16:13:53 UTC (rev 25445)
@@ -54,9 +54,6 @@
--
libxstream-java
--
-libyaml
- packages prepared, but need to be checked for regression https://bugzilla.redhat.com/show_bug.cgi?id=1033990#c15
---
mantis
--
mediawiki (thijs)
More information about the Secure-testing-commits
mailing list