[Secure-testing-commits] r26120 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Mar 14 12:55:45 UTC 2014 

Author: jmm
Date: 2014-03-14 12:55:18 +0000 (Fri, 14 Mar 2014)
New Revision: 26120

Modified:
   data/CVE/list
Log:
filed some bugs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-03-14 12:05:46 UTC (rev 26119)
+++ data/CVE/list	2014-03-14 12:55:18 UTC (rev 26120)
@@ -1015,8 +1015,7 @@
 	RESERVED
 CVE-2014-1904
 	RESERVED
-	- libspring-java <unfixed>
-	TODO: check
+	- libspring-java <unfixed> (bug #741604)
 	NOTE: http://www.gopivotal.com/security/cve-2014-1904
 CVE-2014-1903 (admin/libraries/view.functions.php in FreePBX 2.9 before 2.9.0.14, ...)
 	- freepbx <itp> (bug #464926)
@@ -2854,22 +2853,19 @@
 	RESERVED
 CVE-2014-0983
 	RESERVED
-	- virtualbox <unfixed>
-	- virtualbox-ose <removed>
+	- virtualbox <unfixed> (bug #741602)
+	- virtualbox-ose <removed> (bug #741602)
 	NOTE: http://www.coresecurity.com/advisories/oracle-virtualbox-3d-acceleration-multiple-memory-corruption-vulnerabilities
-	TODO: check
 CVE-2014-0982
 	RESERVED
-	- virtualbox <unfixed>
-	- virtualbox-ose <removed>
+	- virtualbox <unfixed> (bug #741602)
+	- virtualbox-ose <removed> (bug #741602)
 	NOTE: http://www.coresecurity.com/advisories/oracle-virtualbox-3d-acceleration-multiple-memory-corruption-vulnerabilities
-	TODO: check
 CVE-2014-0981
 	RESERVED
-	- virtualbox <unfixed>
-	- virtualbox-ose <removed>
+	- virtualbox <unfixed> (bug #741602)
+	- virtualbox-ose <removed> (bug #741602)
 	NOTE: http://www.coresecurity.com/advisories/oracle-virtualbox-3d-acceleration-multiple-memory-corruption-vulnerabilities
-	TODO: check
 CVE-2014-0980 (Buffer overflow in Poster Software PUBLISH-iT 3.6d allows remote ...)
 	NOT-FOR-US: Publish-It
 CVE-2014-0976
@@ -5755,8 +5751,7 @@
 	RESERVED
 CVE-2014-0132 [flaw in parsing authzid can lead to privilege escalation]
 	RESERVED
-	- 389-ds-base <unfixed>
-	TODO: check
+	- 389-ds-base <unfixed> (bug #741600)
 CVE-2014-0131
 	RESERVED
 	- linux <unfixed>
@@ -6009,8 +6004,7 @@
 	RESERVED
 CVE-2014-0054
 	RESERVED
-	- libspring-java <undetermined>
-	TODO: check if applies to Debian, this CVE is for incomplete fixes for CVE-2013-4152/CVE-2013-6429
+	- libspring-java <unfixed> (bug #741604)
 CVE-2014-0053
 	RESERVED
 	NOT-FOR-US: Grails

More information about the Secure-testing-commits mailing list