[Secure-testing-commits] r27623 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jul 6 18:21:54 UTC 2014


Author: carnil
Date: 2014-07-06 18:21:54 +0000 (Sun, 06 Jul 2014)
New Revision: 27623

Modified:
   data/CVE/list
Log:
Record linux fixes in tracker

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-07-06 18:21:22 UTC (rev 27622)
+++ data/CVE/list	2014-07-06 18:21:54 UTC (rev 27623)
@@ -124,22 +124,27 @@
 CVE-2014-4656
 	RESERVED
 	- linux 3.14.9-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 CVE-2014-4655
 	RESERVED
 	- linux 3.14.9-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 CVE-2014-4654
 	RESERVED
 	- linux 3.14.9-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 CVE-2014-4653
 	RESERVED
 	- linux 3.14.9-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 CVE-2014-4652
 	RESERVED
 	- linux 3.14.9-1 (low)
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed> (low)
 	[squeeze] - linux-2.6 <no-dsa> (Minor issue)
 CVE-2014-4678 [incomplete fix for CVE-2014-4657]
@@ -498,6 +503,7 @@
 	[squeeze] - apt-cacher-ng <no-dsa> (Minor issue)
 CVE-2014-4508 (arch/x86/kernel/entry_32.S in the Linux kernel through 3.15.1 on ...)
 	- linux 3.14.9-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 	NOTE: http://article.gmane.org/gmane.linux.kernel/1726110
 CVE-2014-4504
@@ -1476,6 +1482,7 @@
 	NOTE: https://launchpad.net/bugs/1309195
 CVE-2014-4157 (arch/mips/include/asm/thread_info.h in the Linux kernel before 3.14.8 ...)
 	- linux 3.14.7-1 (bug #751417)
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <not-affected> (squeeze-lts only covers x86)
 CVE-2014-XXXX [Class loader vulnerability in DefaultResolver]
 	- commons-beanutils 1.9.2-1
@@ -1587,6 +1594,7 @@
 	[squeeze] - scheme48 1.8+dfsg-1+deb6u1
 CVE-2014-4027 (The rd_build_device_space function in drivers/target/target_core_rd.c ...)
 	- linux 3.14.2-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.38)
 	NOTE: upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
@@ -1737,7 +1745,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2014/06/03/1
 CVE-2014-3940 (The Linux kernel through 3.14.5 does not properly consider the ...)
 	- linux 3.14.7-1 (low)
-	[wheezy] - linux <not-affected> (Only exploitable in 3.12 and later)
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <not-affected> (Only exploitable in 3.12 and later)
 CVE-2014-3925 (sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux ...)
 	- sosreport <not-affected> (RedHat-specific issue)
@@ -1948,6 +1956,7 @@
 	[squeeze] - typo3-src <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-3917 (kernel/auditsc.c in the Linux kernel through 3.14.5, when ...)
 	- linux 3.14.7-1
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 	NOTE: http://article.gmane.org/gmane.linux.kernel/1713179
 CVE-2014-3865 (Multiple directory traversal vulnerabilities in dpkg-source in ...)
@@ -7383,6 +7392,7 @@
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2014-1739 (The media_device_enum_entities function in ...)
 	- linux 3.14.7-1 (unimportant)
+	[wheezy] - linux 3.2.60-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <not-affected> (Vulnerability introduced in 2.6.38)
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6a623460e5fc960ac3ee9f946d3106233fd28d8




More information about the Secure-testing-commits mailing list