[Secure-testing-commits] r27871 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Jul 22 06:01:13 UTC 2014
Author: jmm
Date: 2014-07-22 06:01:05 +0000 (Tue, 22 Jul 2014)
New Revision: 27871
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
add apache to dsa-needed
bozohttpd no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-22 05:17:21 UTC (rev 27870)
+++ data/CVE/list 2014-07-22 06:01:05 UTC (rev 27871)
@@ -6,6 +6,8 @@
NOTE: http://bugs.cacti.net/view.php?id=2456
CVE-2014-5015 [basic http authentication bypass]
- bozohttpd <unfixed> (bug #755197)
+ [wheezy] - bozohttpd <no-dsa> (Minor issue)
+ [squeeze] - bozohttpd <no-dsa> (Minor issue)
CVE-2014-5009 [Incorrect fix for CVE-2014-5008]
- libphp-snoopy <not-affected> (Incorrect fix not applied)
NOTE: This issue exists because of an incorrect fix for CVE-2014-5008.
@@ -6237,7 +6239,7 @@
CVE-2014-2470 (Unspecified vulnerability in the Oracle WebLogic Server component in ...)
NOT-FOR-US: Oracle Fusion Middleware
CVE-2014-2469 (Unspecified vulnerability in Lighthttpd in Oracle Solaris 11.1 allows ...)
- NOT-FOR-US: Lighthttpd in Oracle Solaris
+ - lighttpd <not-affected> (Only affects lighttpd on Oracle Solaris)
CVE-2014-2468 (Unspecified vulnerability in the Siebel UI Framework component in ...)
NOT-FOR-US: Oracle Siebel CRM
CVE-2014-2467 (Unspecified vulnerability in the Oracle Agile PLM Framework component ...)
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-07-22 05:17:21 UTC (rev 27870)
+++ data/dsa-needed.txt 2014-07-22 06:01:05 UTC (rev 27871)
@@ -14,7 +14,6 @@
--
apache2
- the status of 2.2 in wheezy needs to be checked
--
asterisk
--
More information about the Secure-testing-commits
mailing list