[Secure-testing-commits] r27969 - in data: . CVE DLA
Thorsten Alteholz
alteholz at moszumanska.debian.org
Sat Jul 26 10:37:07 UTC 2014
Author: alteholz
Date: 2014-07-26 10:37:06 +0000 (Sat, 26 Jul 2014)
New Revision: 27969
Modified:
data/CVE/list
data/DLA/list
data/lts-needed.txt
Log:
fail2ban done
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-26 05:23:56 UTC (rev 27968)
+++ data/CVE/list 2014-07-26 10:37:06 UTC (rev 27969)
@@ -11418,10 +11418,12 @@
CVE-2013-7177 (config/filter.d/cyrus-imap.conf in the cyrus-imap filter in Fail2ban ...)
{DSA-2979-1}
- fail2ban 0.8.11-1
+ [squeeze] - fail2ban 0.8.4-3+squeeze3
NOTE: https://github.com/fail2ban/fail2ban/commit/bd175f026737d66e7110868fb50b3760ff75e087
CVE-2013-7176 (config/filter.d/postfix.conf in the postfix filter in Fail2ban before ...)
{DSA-2979-1}
- fail2ban 0.8.11-1
+ [squeeze] - fail2ban 0.8.4-3+squeeze3
CVE-2013-7175 (Multiple SQL injection vulnerabilities in Avanset Visual CertExam ...)
NOT-FOR-US: Avanset Visual CertExam Manager
CVE-2013-7174 (Absolute path traversal vulnerability in cgi-bin/jc.cgi in QNAP QTS ...)
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2014-07-26 05:23:56 UTC (rev 27968)
+++ data/DLA/list 2014-07-26 10:37:06 UTC (rev 27969)
@@ -1,3 +1,6 @@
+[26 Jul 2014] DLA-0021-1 fail2ban - security update
+ {CVE-2013-7176 CVE-2013-7177}
+ [squeeze] - fail2ban 0.8.4-3+squeeze3
reserved DLA-0020-1 munin #679897 CVE-2013-6048 munin#1397 CVE-2012-3512
reserved DLA-0019-1 postgresql-8.4 - new upstream minor release
[squeeze] - postgresql-8.4 8.4.22-0squeeze1
Modified: data/lts-needed.txt
===================================================================
--- data/lts-needed.txt 2014-07-26 05:23:56 UTC (rev 27968)
+++ data/lts-needed.txt 2014-07-26 10:37:06 UTC (rev 27969)
@@ -16,10 +16,6 @@
evince
CVE-2011-0433
--
-fail2ban (Thorsten Alteholz)
- CVE-2009-5023 (#544232) was already solved in fail2ban (0.8.4-3+squeeze1)
- CVE-2013-7176, CVE-2013-7177
---
fex (non-free)
--
file
More information about the Secure-testing-commits
mailing list