[Secure-testing-commits] r27928 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 24 04:34:20 UTC 2014
Author: carnil
Date: 2014-07-24 04:32:23 +0000 (Thu, 24 Jul 2014)
New Revision: 27928
Modified:
data/CVE/list
Log:
Add krb5 fixed version for CVE-2014-4343 and CVE-2014-4344
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-23 21:46:26 UTC (rev 27927)
+++ data/CVE/list 2014-07-24 04:32:23 UTC (rev 27928)
@@ -1621,11 +1621,11 @@
RESERVED
CVE-2014-4344 [NULL dereference in GSSAPI servers]
RESERVED
- - krb5 <unfixed> (bug #755521)
+ - krb5 1.12.1+dfsg-5 (bug #755521)
NOTE: https://github.com/krb5/krb5/commit/524688ce87a15fc75f87efc8c039ba4c7d5c197b
CVE-2014-4343 [double-free in SPNEGO initiators]
RESERVED
- - krb5 <unfixed> (bug #755520)
+ - krb5 1.12.1+dfsg-5 (bug #755520)
NOTE: https://github.com/krb5/krb5/commit/f18ddf5d82de0ab7591a36e465bc24225776940f
CVE-2014-4342 (MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows ...)
- krb5 1.12.1+dfsg-4 (bug #753625)
More information about the Secure-testing-commits
mailing list