[Secure-testing-commits] r27623 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 6 18:21:54 UTC 2014
Author: carnil
Date: 2014-07-06 18:21:54 +0000 (Sun, 06 Jul 2014)
New Revision: 27623
Modified:
data/CVE/list
Log:
Record linux fixes in tracker
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-06 18:21:22 UTC (rev 27622)
+++ data/CVE/list 2014-07-06 18:21:54 UTC (rev 27623)
@@ -124,22 +124,27 @@
CVE-2014-4656
RESERVED
- linux 3.14.9-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
CVE-2014-4655
RESERVED
- linux 3.14.9-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
CVE-2014-4654
RESERVED
- linux 3.14.9-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
CVE-2014-4653
RESERVED
- linux 3.14.9-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
CVE-2014-4652
RESERVED
- linux 3.14.9-1 (low)
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed> (low)
[squeeze] - linux-2.6 <no-dsa> (Minor issue)
CVE-2014-4678 [incomplete fix for CVE-2014-4657]
@@ -498,6 +503,7 @@
[squeeze] - apt-cacher-ng <no-dsa> (Minor issue)
CVE-2014-4508 (arch/x86/kernel/entry_32.S in the Linux kernel through 3.15.1 on ...)
- linux 3.14.9-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
NOTE: http://article.gmane.org/gmane.linux.kernel/1726110
CVE-2014-4504
@@ -1476,6 +1482,7 @@
NOTE: https://launchpad.net/bugs/1309195
CVE-2014-4157 (arch/mips/include/asm/thread_info.h in the Linux kernel before 3.14.8 ...)
- linux 3.14.7-1 (bug #751417)
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <not-affected> (squeeze-lts only covers x86)
CVE-2014-XXXX [Class loader vulnerability in DefaultResolver]
- commons-beanutils 1.9.2-1
@@ -1587,6 +1594,7 @@
[squeeze] - scheme48 1.8+dfsg-1+deb6u1
CVE-2014-4027 (The rd_build_device_space function in drivers/target/target_core_rd.c ...)
- linux 3.14.2-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.38)
NOTE: upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
@@ -1737,7 +1745,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2014/06/03/1
CVE-2014-3940 (The Linux kernel through 3.14.5 does not properly consider the ...)
- linux 3.14.7-1 (low)
- [wheezy] - linux <not-affected> (Only exploitable in 3.12 and later)
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <not-affected> (Only exploitable in 3.12 and later)
CVE-2014-3925 (sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux ...)
- sosreport <not-affected> (RedHat-specific issue)
@@ -1948,6 +1956,7 @@
[squeeze] - typo3-src <end-of-life> (Unsupported in squeeze-lts)
CVE-2014-3917 (kernel/auditsc.c in the Linux kernel through 3.14.5, when ...)
- linux 3.14.7-1
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
NOTE: http://article.gmane.org/gmane.linux.kernel/1713179
CVE-2014-3865 (Multiple directory traversal vulnerabilities in dpkg-source in ...)
@@ -7383,6 +7392,7 @@
[squeeze] - chromium-browser <end-of-life>
CVE-2014-1739 (The media_device_enum_entities function in ...)
- linux 3.14.7-1 (unimportant)
+ [wheezy] - linux 3.2.60-1
- linux-2.6 <removed>
[squeeze] - linux-2.6 <not-affected> (Vulnerability introduced in 2.6.38)
NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6a623460e5fc960ac3ee9f946d3106233fd28d8
More information about the Secure-testing-commits
mailing list