[Secure-testing-commits] r27693 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jul 11 14:20:08 UTC 2014
Author: jmm
Date: 2014-07-11 14:20:08 +0000 (Fri, 11 Jul 2014)
New Revision: 27693
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
take libxml2, libav
mark samba as n/a in squeeze
mark kfreebsd as unsupported in squeete-lts
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-11 08:55:09 UTC (rev 27692)
+++ data/CVE/list 2014-07-11 14:20:08 UTC (rev 27693)
@@ -1725,11 +1725,13 @@
RESERVED
- kfreebsd-8 <removed>
[wheezy] - kfreebsd-8 <no-dsa> (kfreebsd-8 only a test kernel, will be fixed in a point update)
+ [squeeze] - kfreebsd-8 <end-of-life> (Unsupported in squeeze-lts)
- kfreebsd-9 <unfixed> (bug #754237)
- kfreebsd-10 <unfixed>
CVE-2014-3952 [sockbuf CMSG kernel memory disclosure]
RESERVED
- kfreebsd-8 <removed>
+ [squeeze] - kfreebsd-8 <end-of-life> (Unsupported in squeeze-lts)
[wheezy] - kfreebsd-8 <no-dsa> (kfreebsd-8 only a test kernel, will be fixed in a point update)
- kfreebsd-9 <unfixed> (bug #754236)
- kfreebsd-10 <unfixed>
@@ -1926,6 +1928,7 @@
CVE-2014-3873 (The ktrace utility in the FreeBSD kernel 8.4 before p11, 9.1 before ...)
- kfreebsd-8 <removed>
- kfreebsd-9 <unfixed> (bug #750493)
+ [squeeze] - kfreebsd-8 <end-of-life> (Unsupported in squeeze-lts)
[wheezy] - kfreebsd-9 <not-affected> (introduced by the merge of r237663)
[wheezy] - kfreebsd-8 <no-dsa> (Non standard kernel, will be fixed in a point update)
CVE-2014-3872 (Multiple SQL injection vulnerabilities in the administration login ...)
@@ -2743,6 +2746,7 @@
CVE-2014-3493 (The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x ...)
{DSA-2966-1}
- samba 2:4.1.9+dfsg-1
+ [squeeze] - samba <not-affected> (Only affects 3.6 and later)
- samba4 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: AD-related packages removed from src:samba4 in 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: https://www.samba.org/samba/security/CVE-2014-3493
@@ -11779,6 +11783,7 @@
CVE-2014-0244 (The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x ...)
{DSA-2966-1}
- samba 2:4.1.9+dfsg-1
+ [squeeze] - samba <not-affected> (Only affects 3.6 and later)
- samba4 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: AD-related packages removed from src:samba4 in 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: https://www.samba.org/samba/security/CVE-2014-0244
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-07-11 08:55:09 UTC (rev 27692)
+++ data/dsa-needed.txt 2014-07-11 14:20:08 UTC (rev 27693)
@@ -19,13 +19,13 @@
--
file
--
-libav
+libav (jmm)
--
liblivemedia (geissert)
--
libtasn1-3 (jmm)
--
-libxml2
+libxml2 (jmm)
--
libxml-security-java
--
More information about the Secure-testing-commits
mailing list