[Secure-testing-commits] r27928 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jul 24 04:34:20 UTC 2014


Author: carnil
Date: 2014-07-24 04:32:23 +0000 (Thu, 24 Jul 2014)
New Revision: 27928

Modified:
   data/CVE/list
Log:
Add krb5 fixed version for CVE-2014-4343 and CVE-2014-4344

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-07-23 21:46:26 UTC (rev 27927)
+++ data/CVE/list	2014-07-24 04:32:23 UTC (rev 27928)
@@ -1621,11 +1621,11 @@
 	RESERVED
 CVE-2014-4344 [NULL dereference in GSSAPI servers]
 	RESERVED
-	- krb5 <unfixed> (bug #755521)
+	- krb5 1.12.1+dfsg-5 (bug #755521)
 	NOTE: https://github.com/krb5/krb5/commit/524688ce87a15fc75f87efc8c039ba4c7d5c197b
 CVE-2014-4343 [double-free in SPNEGO initiators]
 	RESERVED
-	- krb5 <unfixed> (bug #755520)
+	- krb5 1.12.1+dfsg-5 (bug #755520)
 	NOTE: https://github.com/krb5/krb5/commit/f18ddf5d82de0ab7591a36e465bc24225776940f
 CVE-2014-4342 (MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows ...)
 	- krb5 1.12.1+dfsg-4 (bug #753625)




More information about the Secure-testing-commits mailing list