[Secure-testing-commits] r27486 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Jun 27 08:52:37 UTC 2014


Author: jmm
Date: 2014-06-27 08:52:37 +0000 (Fri, 27 Jun 2014)
New Revision: 27486

Modified:
   data/CVE/list
Log:
boinc no-dsa for LTS, otherwise fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-27 08:45:38 UTC (rev 27485)
+++ data/CVE/list	2014-06-27 08:52:37 UTC (rev 27486)
@@ -1555,8 +1555,8 @@
 CVE-2013-7387 (Session fixation vulnerability in DataLife Engine (DLE) 9.7 and ...)
 	NOT-FOR-US: DataLife Engine
 CVE-2011-5280 (Multiple stack-based buffer overflows in BOINC 6.13.x allow remote ...)
-	- boinc <undetermined>
-	TODO: check
+	- boinc 7.0.2+dfsg-1 (low)
+	[qsueeze] - boinc <no-dsa> (Minor issue)
 CVE-2014-3969 (Xen 4.4.x, when running on an ARM system, does not properly check ...)
 	- xen <not-affected> (Only ARM systems are affected from Xen 4.4 onwards)
 CVE-2014-3970 (The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv ...)




More information about the Secure-testing-commits mailing list