[Secure-testing-commits] r25957 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Mar 5 06:14:48 UTC 2014
Author: jmm
Date: 2014-03-05 06:14:48 +0000 (Wed, 05 Mar 2014)
New Revision: 25957
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
libssh N/A
filed bug for stunnel4, dsa needed
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-05 05:40:55 UTC (rev 25956)
+++ data/CVE/list 2014-03-05 06:14:48 UTC (rev 25957)
@@ -5383,8 +5383,10 @@
NOT-FOR-US: Apache Shiro
CVE-2014-0073
RESERVED
+ NOT-FOR-US: Apache Cordova
CVE-2014-0072
RESERVED
+ NOT-FOR-US: Apache Cordova
CVE-2014-0071 [Security Groups fail to block network traffic]
RESERVED
- neutron <unfixed>
@@ -5575,11 +5577,11 @@
NOT-FOR-US: Red Hat JBoss Enterprise Application Platform
CVE-2014-0017 [PRNG vulnerability]
RESERVED
- - libssh <unfixed>
+ - libssh <not-affected> (libssh server components not packaged in Debian)
NOTE: http://git.libssh.org/projects/libssh.git/commit/?id=e99246246b4061f7e71463f8806b9dcad65affa0
CVE-2014-0016 [PRNG vulnerability]
RESERVED
- - stunnel4 <unfixed>
+ - stunnel4 <unfixed> (bug #740802)
CVE-2014-0015 (cURL and libcurl 7.10.6 through 7.34.0, when more than one ...)
{DSA-2849-1}
- curl 7.35.0-1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-03-05 05:40:55 UTC (rev 25956)
+++ data/dsa-needed.txt 2014-03-05 06:14:48 UTC (rev 25957)
@@ -78,6 +78,8 @@
--
ruby-actionpack-3.2
--
+stunnel4
+--
tomcat7/stable (jmm)
--
virtualbox
More information about the Secure-testing-commits
mailing list